CVE-2024-22651

CRITICAL

CVSS v3

9.8

CRITICAL

EPSS Score

73.4%

exploit probability

CISA KEV

No

known exploited

Exploitation

SSVC status

Description

There is a command injection vulnerability in the ssdpcgi_main function of cgibin binary in D-Link DIR-815 router firmware v1.04.

Technical Details

Published
1/24/2024

Frequently Asked Questions

What is CVE-2024-22651?

There is a command injection vulnerability in the ssdpcgi_main function of cgibin binary in D-Link DIR-815 router firmware v1.04.

Is CVE-2024-22651 actively exploited?

Active exploitation of CVE-2024-22651 has not been confirmed. The EPSS score is 73.4%, indicating the estimated probability of exploitation in the next 30 days.

What is the CVSS score for CVE-2024-22651?

CVE-2024-22651 has a CVSS v3 base score of 9.8 (CRITICAL severity).

Is CVE-2024-22651 affecting your environment?

Use isMalicious to check if any of your IPs or domains are associated with this vulnerability's IOCs.