CVE-2021-45382

Name of the Vulnerable Software and Affected Versions D-link DIR-810L versions all D-link DIR-820L/LW versions all D-link DIR-826L versions all D-link DIR-830L versions all D-link DIR-836L versions all

Description A Remote Command Execution vulnerability exists in the DDNS function of the affected routers, allowing a remote attacker to execute arbitrary commands. The issue is related to insufficient checking of arguments passed to a command. The affected routers have reached their End of Life (EOL) / End of Service Life (EOS) Life-Cycle, and as such, this issue will not be patched.

Recommendations For D-link DIR-810L, consider disabling the DDNS function to minimize the risk of exploitation. For D-link DIR-820L/LW, consider disabling the DDNS function to minimize the risk of exploitation. For D-link DIR-826L, consider disabling the DDNS function to minimize the risk of exploitation. For D-link DIR-830L, consider disabling the DDNS function to minimize the risk of exploitation. For D-link DIR-836L, consider disabling the DDNS function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.