CVE-2021-45382

Published: Feb 17, 2022Modified: Nov 10, 2025CISA KEV

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

A Remote Command Execution (RCE) vulnerability exists in all series H/W revisions D-link DIR-810L, DIR-820L/LW, DIR-826L, DIR-830L, and DIR-836L routers via the DDNS function in ncc2 binary file. Note: DIR-810L, DIR-820L, DIR-830L, DIR-826L, DIR-836L, all hardware revisions, have reached their End of Life ("EOL") /End of Service Life ("EOS") Life-Cycle and as such this issue will not be patched.

Affected (6)

Products: Dlink: Dir 820l Firmware, Dir 820lw Firmware, Dir 826l Firmware, Dir 830l Firmware, Dir 836l Firmware, Dir 810l Firmware

6 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 820l Firmware	All versions

Running on/with	Platform Versions
Dlink Dir 820l	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 820lw Firmware	All versions

Running on/with	Platform Versions
Dlink Dir 820lw	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 826l Firmware	All versions

Running on/with	Platform Versions
Dlink Dir 826l	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 830l Firmware	All versions

Running on/with	Platform Versions
Dlink Dir 830l	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 836l Firmware	All versions

Running on/with	Platform Versions
Dlink Dir 836l	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 810l Firmware	All versions

Running on/with	Platform Versions
Dlink Dir 810l	All versions

Related CWEs

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

References (5)

https://github.com/doudoudedi/D-LINK_Command_Injection1/blob/main/D-LINK_Command_injection.md

Source: cve@mitre.org

ExploitThird Party Advisory

https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10264

Source: cve@mitre.org

Vendor Advisory

https://github.com/doudoudedi/D-LINK_Command_Injection1/blob/main/D-LINK_Command_injection.md

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10264

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-45382

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

US Government Resource

Timeline

No history available yet.