CVE-2024-39202

Name of the Vulnerable Software and Affected Versions: D-Link DIR-823X firmware - 240126

Description: A remote command execution vulnerability exists in the D-Link DIR-823X firmware due to insufficient measures to neutralize special elements. This vulnerability can be exploited by sending a specially crafted HTTP request to the /goform/set lan settings endpoint, allowing a remote attacker to execute arbitrary code via the dhcpd startip parameter.

Recommendations: For D-Link DIR-823X firmware - 240126, as a temporary workaround, consider disabling access to the /goform/set lan settings endpoint until a patch is available. Restrict the use of the dhcpd startip parameter to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.