CVE-2023-4542

Published: 25/08/2023 Updated: 17/05/2024

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 0

A vulnerability was found in D-Link DAR-8000-10 up to 20230809. It has been classified as critical. This affects an unknown part of the file /app/sys1.php. The manipulation of the argument cmd with the input id leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-238047. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Vulnerable Product	Search on Vulmon	Subscribe to Product
dlink dar-8000-10 firmware

Check Point Reference: CPAI-2023-1608 Date Published: 21 Mar 2024 Severity: Critical ...

nuclei-templates 2W+已校验

templates type templates conut change(new) CVE-2000 1 0 CVE-2001 2 -1 CVE-2002 1 0 CVE-2003 2 0 CVE-2004 4 0 CVE-2005 16 0 CVE-2006 19 0 CVE-2007 64 0 CVE-2008 76 0 CVE-2009 46 0 CVE-2010 140 0 CVE-2011 92 0 CVE-2012 146 0 CVE-2013 169 0 CVE-2014 428 0 CVE-2015 531 0 CVE-2016 249 0 CVE-2017 427 0 CVE-2018 479 0 CVE-2019 572 0 CVE-2020

CWE-78 https://vuldb.com/?id.238047 https://vuldb.com/?ctiid.238047 https://github.com/PumpkinBridge/cve/blob/main/rce.md https://nvd.nist.gov https://github.com/20142995/nuclei-templates https://advisories.checkpoint.com/defense/advisories/public/2024/cpai-2023-1608.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-4542

Vulnerability Summary

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect