VYPR
Unrated severityNVD Advisory· Published Nov 22, 2022· Updated Apr 25, 2025

CVE-2022-44808

CVE-2022-44808

Description

A command injection vulnerability has been found on D-Link DIR-823G devices with firmware version 1.02B03 that allows an attacker to execute arbitrary operating system commands through well-designed /HNAP1 requests. Before the HNAP API function can process the request, the system function executes an untrusted command that triggers the vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Dlink/DIR823Gcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: =1.02B03

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.