THREAT OPS › CVEs › CVE-2024-3272
CVE-2024-3272 — D-Link Multiple NAS Devices Use of Hard-Coded Credentials Vulnerability
D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contains a hard-coded credential that allows an attacker to conduct authenticated command injection, leading to remote, unauthorized code execution.
Vulnerability details
- Affected productsMultiple NAS Devices
- KEV remediation due2024-05-02