DLINK - DSL-224 Post-auth RCE.
DLINK router version 3.0.8 has an interface where you can configure NTP servers (Network Time Protocol) via jsonrpc API.
It is possible to inject a command through this interface that will run with ROOT permissions on the router.
References
Link | Resource |
---|---|
https://www.gov.il/en/Departments/faq/cve_advisories | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
25 Oct 2023, 18:17
Type | Values Removed | Values Added |
---|---|---|
Summary | DLINK - DSL-224 Post-auth RCE. DLINK router version 3.0.8 has an interface where you can configure NTP servers (Network Time Protocol) via jsonrpc API. It is possible to inject a command through this interface that will run with ROOT permissions on the router. |
Information
Published : 2022-11-17 23:15
Updated : 2024-02-28 19:51
NVD link : CVE-2022-36786
Mitre link : CVE-2022-36786
CVE.ORG link : CVE-2022-36786
JSON object : View
Products Affected
dlink
- dsl-224
- dsl-224_firmware
CWE
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')