Vulnerability Details CVE-2022-25106
D-Link DIR-859 v1.05 was discovered to contain a stack-based buffer overflow via the function genacgi_main. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 76.5%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 7.1
References
- https://github.com/chunklhit/cve/blob/master/dlink/DIR859/BufferOverflow.md
- https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10267
- https://www.dlink.com/en/security-bulletin/
- https://github.com/chunklhit/cve/blob/master/dlink/DIR859/BufferOverflow.md
- https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10267
- https://www.dlink.com/en/security-bulletin/
Products affected by CVE-2022-25106
-
cpe:2.3:h:dlink:dir-859:-
-
cpe:2.3:h:dlink:dir-859_a3:-
-
cpe:2.3:o:dlink:dir-859_a3_firmware:1.05
-
cpe:2.3:o:dlink:dir-859_firmware:1.05