CVE-2022-40720

Name of the Vulnerable Software and Affected Versions D-Link DIR-2150 versions 4.0.1

Description The issue is related to the xupnpd service in D-Link DIR-2150 routers, specifically the Dreambox plugin, which listens on TCP port 4044 by default. It allows network-adjacent attackers to execute arbitrary commands due to the lack of proper validation of a user-supplied string before using it to execute a system call. This can be exploited without requiring authentication, enabling an attacker to execute code in the context of the router.

Recommendations For version 4.0.1, consider disabling the Dreambox plugin for the xupnpd service as a temporary workaround until a patch is available. Restrict access to TCP port 4044 to minimize the risk of exploitation. Avoid using the vulnerable xupnpd service until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.