Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-44929

An access control issue in D-Link DVG-G5402SP GE_1.03 allows unauthenticated attackers to escalate privileges via arbitrarily editing VoIP SIB profiles.

Published

2022-12-02T03:15:09.273

Last Modified

2025-04-24T15:15:53.133

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Primary
NVD-CWE-Other
Type: Secondary
CWE-276

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	d-link	dvg-g5402sp_firmware	ge_1.03	Yes
Hardware	d-link	dvg-g5402sp	-	No

References

https://cyber-guy.gitbook.io/cyber-guys-blog/pocs/cve-2022-44929 Exploit, Third Party Advisory ([email protected])
https://cyber-guy.gitbook.io/cyber-guys-blog/pocs/cve-2022-44929 Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)