CVE-2023-39637

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 12, 2023
Updated: Sep 13, 2023
CWE ID 77

Summary

CVE-2023-39637 is a newly identified vulnerability affecting the D-Link DIR-816 A2 1.10 B05 router. This issue involves a command injection vulnerability located within the /goform/Diagnosis component. An attacker who successfully exploits this vulnerability can inject and execute malicious commands on the affected device, potentially leading to unauthorized access or system takeover. The implications of this vulnerability include data theft, manipulation, or denial of service. It's essential for users to update their routers to the latest firmware to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share