cnvd - cnvd-2025-11546

cnvd-2025-11546

Vulnerability from cnvd

Title: D-Link DIR-823G Web Management Interface HNAP1 SetVirtualServerSettings访问控制不当漏洞

Description:

D-Link DIR-823G是一款无线路由器，提供家庭和小型办公室的网络连接和管理功能。

D-Link DIR-823G存在访问控制不当漏洞，该漏洞源于Web Management Interface组件的SetAutoRebootSettings、SetClientInfo、SetDMZSettings、SetFirewallSettings、SetParentsControlInfo、SetQoSSettings和SetVirtualServerSettings对特定请求的处理不当。攻击者可利用该漏洞导致未经授权的访问控制。

Severity: 高

Formal description:

目前厂商尚未发布升级程序修复该安全问题，详情见厂商官网： http://www.dlink.com/

Reference: https://vuldb.com/?id.289763

Impacted products

Name
D-Link DIR-823G 1.0.2B05_20181207

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2024-13030",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2024-13030"
    }
  },
  "description": "D-Link DIR-823G\u662f\u4e00\u6b3e\u65e0\u7ebf\u8def\u7531\u5668\uff0c\u63d0\u4f9b\u5bb6\u5ead\u548c\u5c0f\u578b\u529e\u516c\u5ba4\u7684\u7f51\u7edc\u8fde\u63a5\u548c\u7ba1\u7406\u529f\u80fd\u3002\n\nD-Link DIR-823G\u5b58\u5728\u8bbf\u95ee\u63a7\u5236\u4e0d\u5f53\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8eWeb Management Interface\u7ec4\u4ef6\u7684SetAutoRebootSettings\u3001SetClientInfo\u3001SetDMZSettings\u3001SetFirewallSettings\u3001SetParentsControlInfo\u3001SetQoSSettings\u548cSetVirtualServerSettings\u5bf9\u7279\u5b9a\u8bf7\u6c42\u7684\u5904\u7406\u4e0d\u5f53\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u672a\u7ecf\u6388\u6743\u7684\u8bbf\u95ee\u63a7\u5236\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5c1a\u672a\u53d1\u5e03\u5347\u7ea7\u7a0b\u5e8f\u4fee\u590d\u8be5\u5b89\u5168\u95ee\u9898\uff0c\u8be6\u60c5\u89c1\u5382\u5546\u5b98\u7f51\uff1a\r\nhttp://www.dlink.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2025-11546",
  "openTime": "2025-06-05",
  "products": {
    "product": "D-Link DIR-823G 1.0.2B05_20181207"
  },
  "referenceLink": "https://vuldb.com/?id.289763",
  "serverity": "\u9ad8",
  "submitTime": "2024-12-30",
  "title": "D-Link DIR-823G Web Management Interface HNAP1 SetVirtualServerSettings\u8bbf\u95ee\u63a7\u5236\u4e0d\u5f53\u6f0f\u6d1e"
}

CVE-2024-13030 (GCVE-0-2024-13030)

Vulnerability from cvelistv5

Published

2024-12-30 00:00

Modified

2024-12-30 14:42

Severity ?

6.9 (Medium) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
7.3 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
7.3 (High) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE

CWE-284 - Improper Access Controls
CWE-266 - Incorrect Privilege Assignment

Summary

A vulnerability was found in D-Link DIR-823G 1.0.2B05_20181207. It has been rated as critical. This issue affects the function SetAutoRebootSettings/SetClientInfo/SetDMZSettings/SetFirewallSettings/SetParentsControlInfo/SetQoSSettings/SetVirtualServerSettings of the file /HNAP1/ of the component Web Management Interface. The manipulation leads to improper access controls. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

References

▼	URL	Tags
	https://vuldb.com/?id.289763	vdb-entry, technical-description
	https://vuldb.com/?ctiid.289763	signature, permissions-required
	https://vuldb.com/?submit.467903	third-party-advisory
	https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Unauthorized_Vulnerability/D-Link/DIR-823G/SetAutoRebootSettings.md	exploit
	https://www.dlink.com.cn/about/article/news?id=2247	broken-link
	https://www.dlink.com/	product

Impacted products

	Vendor	Product	Version
	D-Link	DIR-823G	Version: 1.0.2B05_20181207

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-13030",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-12-30T14:41:34.566856Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-12-30T14:42:25.836Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "modules": [
            "Web Management Interface"
          ],
          "product": "DIR-823G",
          "vendor": "D-Link",
          "versions": [
            {
              "status": "affected",
              "version": "1.0.2B05_20181207"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "reporter",
          "value": "wxhwxhwxh_mie (VulDB User)"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability was found in D-Link DIR-823G 1.0.2B05_20181207. It has been rated as critical. This issue affects the function SetAutoRebootSettings/SetClientInfo/SetDMZSettings/SetFirewallSettings/SetParentsControlInfo/SetQoSSettings/SetVirtualServerSettings of the file /HNAP1/ of the component Web Management Interface. The manipulation leads to improper access controls. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used."
        },
        {
          "lang": "de",
          "value": "Eine Schwachstelle wurde in D-Link DIR-823G 1.0.2B05_20181207 ausgemacht. Sie wurde als kritisch eingestuft. Betroffen davon ist die Funktion SetAutoRebootSettings/SetClientInfo/SetDMZSettings/SetFirewallSettings/SetParentsControlInfo/SetQoSSettings/SetVirtualServerSettings der Datei /HNAP1/ der Komponente Web Management Interface. Dank Manipulation mit unbekannten Daten kann eine improper access controls-Schwachstelle ausgenutzt werden. Die Umsetzung des Angriffs kann dabei \u00fcber das Netzwerk erfolgen. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "baseScore": 6.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
            "version": "4.0"
          }
        },
        {
          "cvssV3_1": {
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          }
        },
        {
          "cvssV3_0": {
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          }
        },
        {
          "cvssV2_0": {
            "baseScore": 7.5,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-284",
              "description": "Improper Access Controls",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-266",
              "description": "Incorrect Privilege Assignment",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-12-30T00:00:28.731Z",
        "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "shortName": "VulDB"
      },
      "references": [
        {
          "name": "VDB-289763 | D-Link DIR-823G Web Management Interface HNAP1 SetVirtualServerSettings access control",
          "tags": [
            "vdb-entry",
            "technical-description"
          ],
          "url": "https://vuldb.com/?id.289763"
        },
        {
          "name": "VDB-289763 | CTI Indicators (IOB, IOC, TTP, IOA)",
          "tags": [
            "signature",
            "permissions-required"
          ],
          "url": "https://vuldb.com/?ctiid.289763"
        },
        {
          "name": "Submit #467903 | D-Link DIR823G V1.0.2B05_20181207 Improper Access Controls",
          "tags": [
            "third-party-advisory"
          ],
          "url": "https://vuldb.com/?submit.467903"
        },
        {
          "tags": [
            "exploit"
          ],
          "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Unauthorized_Vulnerability/D-Link/DIR-823G/SetAutoRebootSettings.md"
        },
        {
          "tags": [
            "broken-link"
          ],
          "url": "https://www.dlink.com.cn/about/article/news?id=2247"
        },
        {
          "tags": [
            "product"
          ],
          "url": "https://www.dlink.com/"
        }
      ],
      "tags": [
        "unsupported-when-assigned"
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2024-12-29T00:00:00.000Z",
          "value": "Advisory disclosed"
        },
        {
          "lang": "en",
          "time": "2024-12-29T01:00:00.000Z",
          "value": "VulDB entry created"
        },
        {
          "lang": "en",
          "time": "2024-12-29T13:26:25.000Z",
          "value": "VulDB entry last update"
        }
      ],
      "title": "D-Link DIR-823G Web Management Interface HNAP1 SetVirtualServerSettings access control"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
    "assignerShortName": "VulDB",
    "cveId": "CVE-2024-13030",
    "datePublished": "2024-12-30T00:00:28.731Z",
    "dateReserved": "2024-12-29T12:21:15.297Z",
    "dateUpdated": "2024-12-30T14:42:25.836Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted