CVE-2023-33781

Name of the Vulnerable Software and Affected Versions D-Link DIR-842V2 version 1.0.3

Description The issue allows attackers to execute arbitrary commands via importing a crafted file. This is related to the lack of data cleaning measures at the management level, which can be exploited by a remote attacker to execute arbitrary commands by importing a specially crafted binary file.

Recommendations For D-Link DIR-842V2 version 1.0.3, consider restricting the import of files to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using the file import feature until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.