First published: Fri Mar 31 2023(Updated: )
An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-882 1.30. A specially crafted network request can lead to the disclosure of sensitive information.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Dlink Dir-882 Firmware | =1.30 | |
Dlink Dir-882 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-26925 is an information disclosure vulnerability that exists in the Syslog functionality of D-LINK DIR-882 1.30 firmware.
The CVE-2023-26925 vulnerability can be exploited by sending a specially crafted network request.
The severity of CVE-2023-26925 is high with a CVSS score of 7.5.
To fix the CVE-2023-26925 vulnerability, upgrade your D-LINK DIR-882 firmware to version 1.30 or later.
You can find more information about CVE-2023-26925 in the following references: [Link 1](https://github.com/laotun-s/POC/blob/main/CVE-2023-26925.txt), [Link 2](https://www.dlink.com/en/security-bulletin/)