CVE-2023-32224

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jun 28, 2023
Updated: Jul 6, 2023
CWE ID 307

Summary

CVE-2023-30224 refers to a vulnerability affecting D-Link DSL-224 devices with firmware version 3.0.10. This issue is classified as CWE-307, which means there is an improper restriction of excessive authentication attempts. Hackers can exploit this flaw by making multiple login attempts to gain unauthorized access to the device, potentially leading to unintended modifications or unauthorized data access. To mitigate this risk, users are advised to update their device firmware to the latest version as soon as possible. Failure to do so could result in compromised network security.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share