Site icon API Security Blog

D-Link DIR-823G OS Command Injection Vulnerability (CNVD-2022-81490)

D-Link DIR-823G is a wireless router from D-Link, a Chinese company. A security vulnerability exists in D-Link DIR-823G firmware version 1.02B03, which stems from its HNAP API function allowing an attacker to implement arbitrary operating system command execution via a carefully crafted HNAP1 request. No details of the vulnerability are currently available.Read More

Exit mobile version