CVE-2023-25282

2023-03-1500:00:00

mitre

www.cve.org

heap overflow

d-link dir820la1_fw106b02

denial of service

config.log_to_syslog

log_opt_droppackets

mydlink_api.ccp

AI Score

7.2

Confidence

High

EPSS

0.001

Percentile

30.5%

JSON

A heap overflow vulnerability in D-Link DIR820LA1_FW106B02 allows attackers to cause a denial of service via the config.log_to_syslog and log_opt_dropPackets parameters to mydlink_api.ccp.

References

github.com/migraine-sudo/D_Link_Vuln/tree/main/Permanent%20DDOS%20vulnerability%20in%20emailInfo

www.dlink.com/en/security-bulletin/