D-Link DIR-2150 SetSysEmailSettings EmailFrom Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2150 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.
The specific flaw exists within the SOAP API interface, which listens on TCP port 80 by default. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-20556.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.zerodayinitiative.com/advisories/ZDI-23-626/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: zdi
Published: 2024-05-03T01:57:07.144Z
Updated: 2024-08-02T16:10:05.550Z
Reserved: 2023-05-31T19:51:08.219Z
Link: CVE-2023-34278
Vulnrichment
Updated: 2024-08-02T16:10:05.550Z
NVD
Status : Awaiting Analysis
Published: 2024-05-03T02:15:26.977
Modified: 2024-11-21T08:06:55.203
Link: CVE-2023-34278
Redhat
No data.