CVE-2022-38873
Severity Score
7.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
D-Link devices DAP-2310 v2.10rc036 and earlier, DAP-2330 v1.06rc020 and earlier, DAP-2360 v2.10rc050 and earlier, DAP-2553 v3.10rc031 and earlier, DAP-2660 v1.15rc093 and earlier, DAP-2690 v3.20rc106 and earlier, DAP-2695 v1.20rc119_beta31 and earlier, DAP-3320 v1.05rc027 beta and earlier, DAP-3662 v1.05rc047 and earlier allows attackers to cause a Denial of Service (DoS) via uploading a crafted firmware after modifying the firmware header.
Dispositivos D-Link DAP-2310 v2.10rc036 y anteriores, DAP-2330 v1.06rc020 y anteriores, DAP-2360 v2.10rc050 y anteriores, DAP-2553 v3.10rc031 y anteriores, DAP-2660 v1.15rc093 y anteriores, DAP -2690 v3.20rc106 y anteriores, DAP-2695 v1.20rc119_beta31 y anteriores, DAP-3320 v1.05rc027 beta y anteriores, DAP-3662 v1.05rc047 y anteriores permiten a los atacantes provocar una DenegaciĆ³n de Servicio (DoS) mediante la carga de un archivo firmware manipulado despuĆ©s de modificar el encabezado del firmware.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-08-29 CVE Reserved
- 2022-12-20 CVE Published
- 2024-07-12 EPSS Updated
- 2024-08-03 CVE Updated
- 2024-08-03 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (2)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://github.com/Yuhao-W/BUG--D-Link--Firmware-Update-Vulnerabilities/blob/main/README.md | 2024-08-03 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.dlink.com/en/security-bulletin | 2022-12-29 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Dlink Search vendor "Dlink" | Dap-2310 Firmware Search vendor "Dlink" for product "Dap-2310 Firmware" | <= 2.10rc036 Search vendor "Dlink" for product "Dap-2310 Firmware" and version " <= 2.10rc036" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dap-2310 Search vendor "Dlink" for product "Dap-2310" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dap-2330 Firmware Search vendor "Dlink" for product "Dap-2330 Firmware" | <= 1.06rc020 Search vendor "Dlink" for product "Dap-2330 Firmware" and version " <= 1.06rc020" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dap-2330 Search vendor "Dlink" for product "Dap-2330" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dap-2360 Firmware Search vendor "Dlink" for product "Dap-2360 Firmware" | <= 2.10rc050 Search vendor "Dlink" for product "Dap-2360 Firmware" and version " <= 2.10rc050" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dap-2360 Search vendor "Dlink" for product "Dap-2360" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dap-2553 Firmware Search vendor "Dlink" for product "Dap-2553 Firmware" | <= 3.10rc031 Search vendor "Dlink" for product "Dap-2553 Firmware" and version " <= 3.10rc031" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dap-2553 Search vendor "Dlink" for product "Dap-2553" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dap-2660 Firmware Search vendor "Dlink" for product "Dap-2660 Firmware" | <= 1.15rc093 Search vendor "Dlink" for product "Dap-2660 Firmware" and version " <= 1.15rc093" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dap-2660 Search vendor "Dlink" for product "Dap-2660" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dap-2690 Firmware Search vendor "Dlink" for product "Dap-2690 Firmware" | <= 3.20rc106 Search vendor "Dlink" for product "Dap-2690 Firmware" and version " <= 3.20rc106" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dap-2690 Search vendor "Dlink" for product "Dap-2690" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dap-2695 Firmware Search vendor "Dlink" for product "Dap-2695 Firmware" | < 1.20rc119 Search vendor "Dlink" for product "Dap-2695 Firmware" and version " < 1.20rc119" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dap-2695 Search vendor "Dlink" for product "Dap-2695" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dap-2695 Firmware Search vendor "Dlink" for product "Dap-2695 Firmware" | 1.20rc119 Search vendor "Dlink" for product "Dap-2695 Firmware" and version "1.20rc119" | beta31 |
Affected
| in | Dlink Search vendor "Dlink" | Dap-2695 Search vendor "Dlink" for product "Dap-2695" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dap-3320 Firmware Search vendor "Dlink" for product "Dap-3320 Firmware" | < 1.05rc027 Search vendor "Dlink" for product "Dap-3320 Firmware" and version " < 1.05rc027" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dap-3320 Search vendor "Dlink" for product "Dap-3320" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dap-3320 Firmware Search vendor "Dlink" for product "Dap-3320 Firmware" | 1.05rc027 Search vendor "Dlink" for product "Dap-3320 Firmware" and version "1.05rc027" | beta |
Affected
| in | Dlink Search vendor "Dlink" | Dap-3320 Search vendor "Dlink" for product "Dap-3320" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dap-3662 Firmware Search vendor "Dlink" for product "Dap-3662 Firmware" | <= 1.05rc047 Search vendor "Dlink" for product "Dap-3662 Firmware" and version " <= 1.05rc047" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dap-3662 Search vendor "Dlink" for product "Dap-3662" | - | - |
Safe
|