CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-51023

D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the Address parameter in the SetNetworkTomographySettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 76.2%

CVSS Severity

CVSS v3 Score 8.8

References

https://github.com/pjqwudi1/my_vuln/blob/main/D-link4/vuln_42/42.md
https://www.dlink.com/en/security-bulletin/

Products affected by CVE-2024-51023

Dlink » Dir-823g » Version: N/A

cpe:2.3:h:dlink:dir-823g:-
Dlink » Dir-823g Firmware » Version: 1.0.2b05

cpe:2.3:o:dlink:dir-823g_firmware:1.0.2b05

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-51023

Products

Pricing

Contact Us