CVE-2023-43128: Command Injection
First published: Thu Sep 21 2023(Updated: )
D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 is vulnerable to command injection due to lax filtering of HTTP_ST parameters.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dlink Dir-806 Firmware | =100cnb11 | |
| Dlink Dir-806 | =a1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-43128?
CVE-2023-43128 is a vulnerability found in the D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11.
How does the D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 become vulnerable to command injection?
The D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 becomes vulnerable to command injection due to lax filtering of HTTP_ST parameters.
Is the D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 the only affected software?
No, the D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 is not the only affected software. There may be other versions or similar models that are also vulnerable.
What is the severity of CVE-2023-43128?
CVE-2023-43128 has a severity rating of critical with a CVSS score of 9.8.
How can I fix the CVE-2023-43128 vulnerability in the D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11?
To fix the CVE-2023-43128 vulnerability, it is recommended to update the firmware of the D-LINK DIR-806 router to a version that includes a patch for the vulnerability.
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-api
- collector/nvd-index
- vendor/dlink
- canonical/dlink dir-806 firmware
- version/dlink dir-806 firmware/100cnb11
- canonical/dlink dir-806
- version/dlink dir-806/a1