CVE-2023-26925
First published: Fri Mar 31 2023(Updated: )
An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-882 1.30. A specially crafted network request can lead to the disclosure of sensitive information.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dlink Dir-882 Firmware | =1.30 | |
| Dlink Dir-882 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-26925?
CVE-2023-26925 is an information disclosure vulnerability that exists in the Syslog functionality of D-LINK DIR-882 1.30 firmware.
How can the CVE-2023-26925 vulnerability be exploited?
The CVE-2023-26925 vulnerability can be exploited by sending a specially crafted network request.
What is the severity of CVE-2023-26925?
The severity of CVE-2023-26925 is high with a CVSS score of 7.5.
How can I fix the CVE-2023-26925 vulnerability?
To fix the CVE-2023-26925 vulnerability, upgrade your D-LINK DIR-882 firmware to version 1.30 or later.
Where can I find more information about CVE-2023-26925?
You can find more information about CVE-2023-26925 in the following references: [Link 1](https://github.com/laotun-s/POC/blob/main/CVE-2023-26925.txt), [Link 2](https://www.dlink.com/en/security-bulletin/)
- collector/nvd-index
- vendor/dlink
- canonical/dlink dir-882 firmware
- version/dlink dir-882 firmware/1.30
- canonical/dlink dir-882