CVE-2022-43629
Description
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling of SetSysEmailSettings requests to the web management portal. When parsing subelements within the SetSysEmailSettings element, the process does not properly validate a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-16149.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Command injection in D-Link DIR-1935 SetSysEmailSettings allows authenticated, network-adjacent attackers to execute arbitrary commands as root.
Vulnerability
This vulnerability exists in the handling of SetSysEmailSettings requests to the web management portal of D-Link DIR-1935 routers running firmware version DIR1935A1_FW1.03B02_Beta_ipv6_default_gateway_20181224.bin (also referred to as v1.03b02) [1],[2]. The process does not properly validate a user-supplied string when parsing subelements within SetSysEmailSettings, leading to command injection. Although authentication is required, the existing authentication mechanism can be bypassed [2].
Exploitation
An attacker must be on the same network as the target router (network-adjacent) and send a crafted SetSysEmailSettings request to the web management portal. The attacker can bypass authentication, then inject arbitrary system commands through the unvalidated string parameter. No user interaction beyond authentication bypass is required [2].
Impact
Successful exploitation allows an attacker to execute arbitrary code in the context of root, resulting in full compromise of the router. The attacker can read, modify, or delete sensitive data, install malware, or pivot to other network devices [2].
Mitigation
D-Link has not released a patched firmware version for the DIR-1935 as of the publication date; the device is likely end-of-life [1]. Users should segregate the router from untrusted networks and disable remote management. No workaround other than upgrading to a supported device is known [2].
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- D-Link/DIR-1935v5Range: 1.03
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.