CVE-2021-45382 — D-Link Multiple Routers Remote Code Execution Vulnerability
2022-04-04 • CISA Known Exploited Vulnerability
[event] A remote code execution vulnerability exists in all series H/W revisions routers via the DDNS function in ncc2 binary file.
> AFFECTED SOFTWARE
| Field | Value |
|---|---|
| Vendor | D-Link |
| Product | Multiple Routers |
| CWE | CWE-78 |
| CVE ID | CVE-2021-45382 |
| Date Added | 2022-04-04 |
| Due Date | 2022-04-25 |
| Ransomware Campaign | Unknown |
> MITIGATION
The impacted product is end-of-life and should be disconnected if still in use.
Due Date: 2022-04-25