CVE-2022-38873
published 2022-12-20CVE-2022-38873: D-Link devices DAP-2310 v2.10rc036 and earlier, DAP-2330 v1.06rc020 and earlier, DAP-2360 v2.10rc050 and earlier, DAP-2553 v3.10rc031 and earlier, DAP-2660…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
D-Link devices DAP-2310 v2.10rc036 and earlier, DAP-2330 v1.06rc020 and earlier, DAP-2360 v2.10rc050 and earlier, DAP-2553 v3.10rc031 and earlier, DAP-2660 v1.15rc093 and earlier, DAP-2690 v3.20rc106 and earlier, DAP-2695 v1.20rc119_beta31 and earlier, DAP-3320 v1.05rc027 beta and earlier, DAP-3662 v1.05rc047 and earlier allows attackers to cause a Denial of Service (DoS) via uploading a crafted firmware after modifying the firmware header.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dlink | dap-2310_firmware | <= 2.10rc036 | — |
| dlink | dap-2330_firmware | <= 1.06rc020 | — |
| dlink | dap-2360_firmware | <= 2.10rc050 | — |
| dlink | dap-2553_firmware | <= 3.10rc031 | — |
| dlink | dap-2660_firmware | <= 1.15rc093 | — |
| dlink | dap-2690_firmware | <= 3.20rc106 | — |
| dlink | dap-2695_firmware | < 1.20rc119 | 1.20rc119 |
| dlink | dap-2695_firmware | — | — |
| dlink | dap-3320_firmware | < 1.05rc027 | 1.05rc027 |
| dlink | dap-3320_firmware | — | — |
| dlink | dap-3662_firmware | <= 1.05rc047 | — |