CVE-2023-26613
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Jun 29, 2023
Updated: Jul 6, 2023
CWE ID 78
Summary
CVE-2023-26613 is a newly disclosed vulnerability affecting D-Link DIR-823G routers with firmware version 1.02B05. This issue permits unauthorized attackers to inject and execute arbitrary OS commands through a specially crafted GET request to the EXCU_SHELL endpoint. Successful exploitation could lead to significant security compromises, potentially allowing attackers full control over affected devices. Router users are strongly advised to update their firmware as soon as a patch becomes available to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- D LINK SYSTEMS INC