CVE-2022-43632
Description
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling of SetQoSSettings requests to the web management portal. When parsing subelements within the QoSInfo element, the process does not properly validate a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-16153.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Command injection in D-Link DIR-1935 SetQoSSettings allows authenticated network-adjacent attackers to execute arbitrary code as root, with authentication bypass possible.
Vulnerability
The vulnerability exists in the SetQoSSettings functionality of D-Link DIR-1935 routers, firmware version DIR1935A1_FW1.03B02_Beta_ipv6_default_gateway_20181224.bin (Rev. Ax) [1]. When parsing subelements within the QoSInfo element of a SetQoSSettings request, the process does not properly validate a user-supplied string before using it in a system call, leading to command injection [2].
Exploitation
An attacker must be network-adjacent to the target router and have administrative access to the web management portal. However, the authentication mechanism can be bypassed [2]. The attacker sends a specially crafted SetQoSSettings request containing a malicious QoSInfo payload. The lack of validation allows the injected commands to be executed via a system call.
Impact
Successful exploitation allows an attacker to execute arbitrary operating system commands in the context of root, leading to full compromise of the router's confidentiality, integrity, and availability [2].
Mitigation
D-Link has acknowledged the vulnerability and stated that they began developing security patches [1]. As of the publication date, no firmware update has been released to fix this specific issue. Users should monitor D-Link's support page for updates and consider limiting access to the web management interface to trusted networks only.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- D-Link/DIR-1935v5Range: 1.03
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.