CVE-2022-34527

Description

D-Link DSL-3782 v1.03 and below was discovered to contain a command injection vulnerability via the function byte_4C0160.

Related CPE's

o dlink dsl-3782_firmware 1.01 *******

o dlink dsl-3782_firmware 1.03 *******

h dlink dsl-3782 -*******

References

https://www.dlink.com/en/security-bulletin/

Vendor Advisory

https://github.com/1160300418/Vuls/blob/main/D-Link/DSL-3782/CMDi_in_D-Link%20DSL-3782.md

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io