D-Link DIR-822+ V1.0.5 was found to contain a command injection in ftext function of upload_firmware.cgi, which allows remote attackers to execute arbitrary commands via shell.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 21 May 2025 14:45:00 +0000

Type Values Removed Values Added
First Time appeared Dlink
Dlink dir-822\+
Dlink dir-822\+ Firmware
CPEs cpe:2.3:h:dlink:dir-822\+:-:*:*:*:*:*:*:*
cpe:2.3:o:dlink:dir-822\+_firmware:1.05:*:*:*:*:*:*:*
Vendors & Products Dlink
Dlink dir-822\+
Dlink dir-822\+ Firmware

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-02T02:27:53.608Z

Reserved: 2024-04-23T00:00:00

Link: CVE-2024-33344

cve-icon Vulnrichment

Updated: 2024-04-29T15:44:16.106Z

cve-icon NVD

Status : Analyzed

Published: 2024-04-26T18:15:46.467

Modified: 2025-05-21T12:51:29.240

Link: CVE-2024-33344

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.