Rewterz Threat Alert – Vidar Malware – Active IOCs
December 18, 2023Rewterz Threat Alert – SideWinder APT Group aka Rattlesnake – Active IOCs
December 18, 2023Rewterz Threat Alert – Vidar Malware – Active IOCs
December 18, 2023Rewterz Threat Alert – SideWinder APT Group aka Rattlesnake – Active IOCs
December 18, 2023Severity
High
Analysis Summary
CVE-2023-6580
D-Link DIR-846 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by deserialization of untrusted data by the /HNAP1/ endpoint in the QoS POST Handler component. An attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
- Code Execution
Indicators Of Compromise
CVE
- CVE-2023-40363
Affected Vendors
D-Link
Affected Products
- D-Link DIR-846 firmware FW100A53DBR
Remediation
Refer D-Link Website for patch, upgrade or work-around information.