CVE-2023-51987
CVE-2023-51987 is a critical-severity vulnerability in Dlink Dir-822 Firmware with a CVSS 3.x base score of 9.8. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-306.
Key facts
- Severity: Critical (CVSS 3.x base score 9.8)
- EPSS exploit prediction: 1% (56th percentile)
- Actively exploited: Not listed in CISA KEV
- EU (EUVD) id: EUVD-2023-56666
- Weakness: CWE-306
- Affected product: Dlink Dir-822 Firmware
- Published:
- Last modified:
Description
D-Link DIR-822+ V1.0.2 contains a login bypass in the HNAP1 interface, which allows attackers to log in to administrator accounts with empty passwords.
Frequently asked questions
- What is CVE-2023-51987?
- D-Link DIR-822+ V1.0.2 contains a login bypass in the HNAP1 interface, which allows attackers to log in to administrator accounts with empty passwords.
- How severe is CVE-2023-51987?
- CVE-2023-51987 has a CVSS 3.x base score of 9.8, rated critical severity. It is exploitable over network with low attack complexity, requires no privileges and no user interaction. Impact on confidentiality is high, integrity high, and availability high.
- Is CVE-2023-51987 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 1% (56th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2023-51987?
- CVE-2023-51987 affects Dlink Dir-822 Firmware. See the affected-products list for the exact vulnerable versions.
- How do I fix CVE-2023-51987?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its critical severity, prioritise patching exposed systems.
- Does CVE-2023-51987 have an EU (EUVD) identifier?
- Yes. CVE-2023-51987 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2023-56666.
- When was CVE-2023-51987 published?
- CVE-2023-51987 was published on 2024-01-11 and last updated on 2026-06-17.
References
Affected products (1)
- cpe:2.3:o:dlink:dir-822_firmware:1.0.2:*:*:*:*:*:*:*
More vulnerabilities in Dlink Dir-822 Firmware
- CVE-2023-51984 — Critical (CVSS 9.8): D-Link DIR-822+ V1.0.2 was found to contain a command injection in SetStaticRouteSettings function. allows remote…
- CVE-2019-17621 — Critical (CVSS 9.8): The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated…
- CVE-2018-19989 — Critical (CVSS 9.8): In the /HNAP1/SetQoSSettings message, the uplink parameter is vulnerable, and the vulnerability affects D-Link DIR-822…
- CVE-2018-19987 — Critical (CVSS 9.8): D-Link DIR-822 Rev.B 202KRb06, DIR-822 Rev.C 3.10B06, DIR-860L Rev.B 2.03.B03, DIR-868L Rev.B 2.05B02, DIR-880L Rev.A…
- CVE-2018-20675 — Critical (CVSS 9.8): D-Link DIR-822 C1 before v3.11B01Beta, DIR-822-US C1 before v3.11B01Beta, DIR-850L A* before v1.21B08Beta, DIR-850L B*…
- CVE-2016-6563 — Critical (CVSS 9.8): Processing malformed SOAP messages when performing the HNAP Login action causes a buffer overflow in the stack in some…
All CVEs affecting Dlink Dir-822 Firmware →
Other CWE-306 (Missing Authentication for Critical Function) vulnerabilities
- CVE-2026-54309 — Critical (CVSS 10.0): n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, when @n8n/mcp-browser is run in HTTP…
- CVE-2026-50242 — Critical (CVSS 10.0): In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429…
- CVE-2026-49257 — Critical (CVSS 10.0): mcp-pinot is a Python-based Model Context Protocol (MCP) server for interacting with Apache Pinot. In versions 3.0.1…
- CVE-2026-46846 — Critical (CVSS 10.0): Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware (component: Security Framework).…
- CVE-2026-46803 — Critical (CVSS 10.0): Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware (component: Security Framework).…
- CVE-2026-46800 — Critical (CVSS 10.0): Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware (component: WebCenter Sites).…
Browse all CWE-306 (Missing Authentication for Critical Function) vulnerabilities →