CVE-2022-43625

Name of the Vulnerable Software and Affected Versions D-Link DIR-1935 version 1.03

Description The vulnerability is related to the handling of SetStaticRouteIPv4Settings requests in the web management portal of D-Link DIR-1935 routers. It allows network-adjacent attackers to execute arbitrary code on affected installations. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the parsing of the NetMask element, where the process does not properly validate the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root.

Recommendations For D-Link DIR-1935 version 1.03, as a temporary workaround, consider disabling the SetStaticRouteIPv4Settings function until a patch is available. Restrict access to the web management portal to minimize the risk of exploitation. Avoid using the NetMask element in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.