CVE-2022-38873
First published: Tue Dec 20 2022(Updated: )
D-Link devices DAP-2310 v2.10rc036 and earlier, DAP-2330 v1.06rc020 and earlier, DAP-2360 v2.10rc050 and earlier, DAP-2553 v3.10rc031 and earlier, DAP-2660 v1.15rc093 and earlier, DAP-2690 v3.20rc106 and earlier, DAP-2695 v1.20rc119_beta31 and earlier, DAP-3320 v1.05rc027 beta and earlier, DAP-3662 v1.05rc047 and earlier allows attackers to cause a Denial of Service (DoS) via uploading a crafted firmware after modifying the firmware header.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dlink Dap-2310 Firmware | <=2.10rc036 | |
| Dlink Dap-2310 | ||
| Dlink Dap-2330 Firmware | <=1.06rc020 | |
| Dlink Dap-2330 | ||
| Dlink Dap-2360 Firmware | <=2.10rc050 | |
| Dlink Dap-2360 | ||
| Dlink Dap-2553 Firmware | <=3.10rc031 | |
| Dlink Dap-2553 | ||
| Dlink Dap-2660 Firmware | <=1.15rc093 | |
| Dlink Dap-2660 | ||
| Dlink Dap-2690 Firmware | <=3.20rc106 | |
| Dlink Dap-2690 | ||
| Dlink Dap-2695 Firmware | <1.20rc119 | |
| Dlink Dap-2695 Firmware | =1.20rc119-beta31 | |
| Dlink Dap-2695 | ||
| Dlink Dap-3320 Firmware | <1.05rc027 | |
| Dlink Dap-3320 Firmware | =1.05rc027-beta | |
| Dlink Dap-3320 | ||
| Dlink Dap-3662 Firmware | <=1.05rc047 | |
| Dlink Dap-3662 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-38873?
The severity of CVE-2022-38873 is high with a severity value of 7.5.
Which D-Link devices are affected by CVE-2022-38873?
D-Link devices DAP-2310, DAP-2330, DAP-2360, DAP-2553, DAP-2660, DAP-2690, DAP-2695, DAP-3320, and DAP-3662 are affected by CVE-2022-38873.
What is the affected firmware version for D-Link DAP-2310?
The affected firmware version for D-Link DAP-2310 is up to and including 2.10rc036.
Is D-Link DAP-2695 vulnerable to CVE-2022-38873?
No, D-Link DAP-2695 is not vulnerable to CVE-2022-38873.
Where can I find more information about CVE-2022-38873?
More information about CVE-2022-38873 can be found at the following references: [Link 1](https://github.com/Yuhao-W/BUG--D-Link--Firmware-Update-Vulnerabilities/blob/main/README.md), [Link 2](https://www.dlink.com/en/security-bulletin/).
- collector/nvd-index
- agent/type
- agent/references
- agent/severity
- agent/description
- agent/author
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/dlink
- canonical/dlink dap-2310 firmware
- version/dlink dap-2310 firmware/2.10rc036
- canonical/dlink dap-2310
- canonical/dlink dap-2330 firmware
- version/dlink dap-2330 firmware/1.06rc020
- canonical/dlink dap-2330
- canonical/dlink dap-2360 firmware
- version/dlink dap-2360 firmware/2.10rc050
- canonical/dlink dap-2360
- canonical/dlink dap-2553 firmware
- version/dlink dap-2553 firmware/3.10rc031
- canonical/dlink dap-2553
- canonical/dlink dap-2660 firmware
- version/dlink dap-2660 firmware/1.15rc093
- canonical/dlink dap-2660
- canonical/dlink dap-2690 firmware
- version/dlink dap-2690 firmware/3.20rc106
- canonical/dlink dap-2690
- canonical/dlink dap-2695 firmware
- version/dlink dap-2695 firmware/1.20rc119-beta31
- canonical/dlink dap-2695
- canonical/dlink dap-3320 firmware
- version/dlink dap-3320 firmware/1.05rc027-beta
- canonical/dlink dap-3320
- canonical/dlink dap-3662 firmware
- version/dlink dap-3662 firmware/1.05rc047
- canonical/dlink dap-3662