CVE-2023-44837

Name of the Vulnerable Software and Affected Versions D-Link DIR-823G version A1V1.0.2B05

Description The issue is related to a buffer overflow in the SetWanSettings function via the Password parameter. This allows attackers to cause a Denial of Service (DoS) via a crafted input. The vulnerability is associated with the lack of size checking for input data, which can be exploited by a remote attacker to cause a service disruption.

Recommendations For D-Link DIR-823G version A1V1.0.2B05, as a temporary workaround, consider disabling the SetWanSettings function until a patch is available. Restrict access to the Password parameter in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.