CVE-2023-45576

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 16, 2023
Updated: Oct 19, 2023
CWE ID 787

Summary

CVE-2023-45576 is a Critical-rated vulnerability with a base score of 9.8, allowing remote attackers to execute arbitrary code through a Buffer Overflow vulnerability in various D-Link devices, including the DI-7003GV2.D1, DI-7100G+V2.D1, DI-7100GV2.D1, DI-7200G+V2.D1, DI-7200GV2.E1, DI-7300G+V2.D1, and DI-7400G+V2.D1 models. The vulnerability can be exploited via the remove_ext_proto/remove_ext_port parameter of the upnp_ctrl.asp function. The impact includes high risk to integrity and confidentiality, with an availability impact of high as well. No user interaction or privileges are required to exploit this vulnerability. The exploitability score is 3.9 out of 10. Remediation measures are not provided in the available information.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-45576 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options