CVE-2022-43625 : This vulnerability allows network-adjacent attackers to execute arbitrary code o

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling of SetStaticRouteIPv4Settings requests to the web management portal. When parsing the NetMask element, the process does not properly validate the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-16144.

Published 2023-03-29 19:15:20

Updated 2023-11-08 23:00:55

Source Zero Day Initiative

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2022-43625

Dlink » Dir-1935 Firmware
Versions up to, including, (<=) 1.02
cpe:2.3:o:dlink:dir-1935_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Dlink » Dir-1935 » Version: N/A
Dlink » Dir-1935 Firmware » Version: 1.03 Update B1
cpe:2.3:o:dlink:dir-1935_firmware:1.03:b1:*:*:*:*:*:*
Matching versions
When used together with: Dlink » Dir-1935 » Version: N/A
Dlink » Dir-1935 Firmware » Version: 1.03 Update B2
cpe:2.3:o:dlink:dir-1935_firmware:1.03:b2:*:*:*:*:*:*
Matching versions
When used together with: Dlink » Dir-1935 » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2022-43625

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 11 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-43625

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.8	MEDIUM	CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	0.9	5.9	Zero Day Initiative
Attack Vector: Adjacent Network Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
6.8	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	0.9	5.9	NIST
Attack Vector: Adjacent Network Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2022-43625

CWE-121 Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

Assigned by: zdi-disclosures@trendmicro.com (Primary)

References for CVE-2022-43625

https://www.zerodayinitiative.com/advisories/ZDI-22-1495/

ZDI-22-1495 | Zero Day Initiative
Third Party Advisory;VDB Entry
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10310

D-Link Technical Support
Patch;Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2022-43625

Products affected by CVE-2022-43625

Exploit prediction scoring system (EPSS) score for CVE-2022-43625

CVSS scores for CVE-2022-43625

CWE ids for CVE-2022-43625

References for CVE-2022-43625