Security researcher yali-1002 has disclosed several vulnerabilities in D-Link’s DIR-846W routers. These vulnerabilities allow the execution of arbitrary code via specially-crafted requests.

D-Link has acknowledged these vulnerabilities, but noted these devices are no longer supported. As such, no fixes will be released for these vulnerabilities.

What is the impact? #

Successful exploitation of these vulnerabilities result in devices allowing attackers to perform remote code execution (RCE) by sending special requests to vulnerable devices.

Are updates or workarounds available?  #

D-Link has indicated that the vulnerable systems stopped being supported in 2020 and no further updates will be released. Users are urged to replace vulnerable systems with supported systems.

How to find potentially vulnerable systems with runZero  #

From the Asset Inventory, use the following query to locate systems running potentially vulnerable software:

mac_vendor:"D-Link"

Written by runZero Team

Great research and development is a team effort! Multiple runZero team members collaborated on this post. Go team!

More about runZero Team
Subscribe Now

Get the latest news and expert insights delivered in your inbox.

Welcome to the club! Your subscription to our newsletter is successful.

See Results in Minutes

See & secure your total attack surface. Even the unknowns & unmanageable.

Discover the new era of exposure management!