CVE-2024-3272CISA KEV: Actively Exploited

D-Link Multiple NAS Devices Use of Hard-Coded Credentials Vulnerability

Published Apr 11, 2024·Updated Apr 11, 2024

Description

D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contains a hard-coded credential that allows an attacker to conduct authenticated command injection, leading to remote, unauthorized code execution.

Public Exploits & PoCs2 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free