CVE-2022-26258 — D-Link DIR-820L Remote Code Execution Vulnerability
2022-09-08 • CISA Known Exploited Vulnerability
[event] D-Link DIR-820L contains an unspecified vulnerability in Device Name parameter in /lan.asp which allows for remote code execution.
> AFFECTED SOFTWARE
| Field | Value |
|---|---|
| Vendor | D-Link |
| Product | DIR-820L |
| CWE | CWE-78 |
| CVE ID | CVE-2022-26258 |
| Date Added | 2022-09-08 |
| Due Date | 2022-09-29 |
| Ransomware Campaign | Unknown |
> MITIGATION
The impacted product is end-of-life and should be disconnected if still in use.
Due Date: 2022-09-29