Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2023-37325
Analyzed
More InfoOfficial Page
Source-zdi-disclosures@trendmicro.com
View Known Exploited Vulnerability (KEV) details
Published At-07 May, 2024 | 23:15
Updated At-06 Aug, 2025 | 14:14

D-Link DAP-2622 DDP Set SSID List Missing Authentication Vulnerability. This vulnerability allows network-adjacent attackers to make unauthorized changes to device configuration on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of authentication prior to allowing access to functionality. An attacker can leverage this vulnerability to manipulate wireless authentication settings. . Was ZDI-CAN-20104.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.05.4MEDIUM
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
Type: Secondary
Version: 3.0
Base score: 5.4
Base severity: MEDIUM
Vector:
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
CPE Matches
D-Link Corporation
dlink
>>dap-2622_firmware>>1.00
cpe:2.3:o:dlink:dap-2622_firmware:1.00:*:*:*:*:*:*:*
D-Link Corporation
dlink
>>dap-2622>>-
cpe:2.3:h:dlink:dap-2622:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-306Secondaryzdi-disclosures@trendmicro.com
CWE ID: CWE-306
Type: Secondary
Source: zdi-disclosures@trendmicro.com
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10349zdi-disclosures@trendmicro.com
Vendor Advisory
Product
https://www.zerodayinitiative.com/advisories/ZDI-23-1280/zdi-disclosures@trendmicro.com
Third Party Advisory
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10349af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Product
https://www.zerodayinitiative.com/advisories/ZDI-23-1280/af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Hyperlink: https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10349
Source: zdi-disclosures@trendmicro.com
Resource:
Vendor Advisory
Product
Hyperlink: https://www.zerodayinitiative.com/advisories/ZDI-23-1280/
Source: zdi-disclosures@trendmicro.com
Resource:
Third Party Advisory
Hyperlink: https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10349
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Vendor Advisory
Product
Hyperlink: https://www.zerodayinitiative.com/advisories/ZDI-23-1280/
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Third Party Advisory
Change History
0Changes found
Details not found