Vulnerability Details CVE-2023-45577
Stack Overflow vulnerability in D-Link device DI-7003GV2.D1 v.23.08.25D1 and before, DI-7100G+V2.D1 v.23.08.23D1 and before, DI-7100GV2.D1 v.23.08.23D1, DI-7200G+V2.D1 v.23.08.23D1 and before, DI-7200GV2.E1 v.23.08.23E1 and before, DI-7300G+V2.D1 v.23.08.23D1, and DI-7400G+V2.D1 v.23.08.23D1 and before allows a remote attacker to execute arbitrary code via the wanid parameter of the H5/speedlimit.data function.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.065
EPSS Ranking 90.6%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2023-45577
-
cpe:2.3:h:dlink:di-7003g:v2.d1
-
cpe:2.3:h:dlink:di-7100g+:v2.d1
-
cpe:2.3:h:dlink:di-7100g:v2.d1
-
cpe:2.3:h:dlink:di-7200g+:v2.d1
-
cpe:2.3:h:dlink:di-7200g:v2.e1
-
cpe:2.3:h:dlink:di-7300g+:v2.d1
-
cpe:2.3:h:dlink:di-7400g+:v2.d1
-
cpe:2.3:o:dlink:di-7003g_firmware:-
-
cpe:2.3:o:dlink:di-7003g_firmware:23.08.25d1
-
cpe:2.3:o:dlink:di-7100g+_firmware:-
-
cpe:2.3:o:dlink:di-7100g+_firmware:23.08.23d1
-
cpe:2.3:o:dlink:di-7100g_firmware:-
-
cpe:2.3:o:dlink:di-7100g_firmware:23.08.23d1
-
cpe:2.3:o:dlink:di-7200g+_firmware:-
-
cpe:2.3:o:dlink:di-7200g+_firmware:23.08.23d1
-
cpe:2.3:o:dlink:di-7200g_firmware:-
-
cpe:2.3:o:dlink:di-7200g_firmware:21.04.09e1
-
cpe:2.3:o:dlink:di-7200g_firmware:23.08.23e1
-
cpe:2.3:o:dlink:di-7300g+_firmware:-
-
cpe:2.3:o:dlink:di-7300g+_firmware:23.08.23d1
-
cpe:2.3:o:dlink:di-7400g+_firmware:-
-
cpe:2.3:o:dlink:di-7400g+_firmware:23.08.23d1