Vulnerability Details CVE-2022-36588
In D-Link DAP1650 v1.04 firmware, the fileaccess.cgi program in the firmware has a buffer overflow vulnerability caused by strncpy.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.6%
CVSS Severity
CVSS v3 Score 9.8
References
- https://github.com/Davidteeri/Bug-Report/blob/main/dlink-dap1650-0x419EF8.md
- https://support.dlink.com/ProductInfo.aspx?m=DAP-1650
- https://www.dlink.com/en/security-bulletin/
- https://github.com/Davidteeri/Bug-Report/blob/main/dlink-dap1650-0x419EF8.md
- https://support.dlink.com/ProductInfo.aspx?m=DAP-1650
- https://www.dlink.com/en/security-bulletin/
Products affected by CVE-2022-36588
-
cpe:2.3:h:dlink:dap-1650:-
-
cpe:2.3:o:dlink:dap-1650_firmware:1.04b02_j65h