CVE-2023-48842

CRITICAL

D-Link Go-RT-AC750 - Command Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-48842. PoCs published by creacitysec.

AI-analyzed exploit summary The repository contains a functional exploit for CVE-2023-48842, a command injection vulnerability in D-Link Go-RT-AC750 via the 'service' parameter in hedwig.cgi. The exploit extracts credentials by reading DEVICE.ACCOUNT.xml and supports multi-threading for bulk targeting.

Description

D-Link Go-RT-AC750 revA_v101b03 was discovered to contain a command injection vulnerability via the service parameter at hedwig.cgi.

Exploits (1)

nomisec WORKING POC 6 stars

by creacitysec · poc

https://github.com/creacitysec/CVE-2023-48842

View Code ZIP pw:eip

The repository contains a functional exploit for CVE-2023-48842, a command injection vulnerability in D-Link Go-RT-AC750 via the 'service' parameter in hedwig.cgi. The exploit extracts credentials by reading DEVICE.ACCOUNT.xml and supports multi-threading for bulk targeting.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: D-Link Go-RT-AC750 revA_v101b03

No auth needed

Prerequisites: Network access to the target device · Hedwig.cgi endpoint exposed

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit

https://drive.google.com/file/d/1y5om__f2SAhNmcPqDxC_SRTvJVAWwPcH/view?usp=drive_link

Scores

CVSS v3 9.8

EPSS 0.0374

EPSS Percentile 88.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-77 CWE-78

Status published

Products (1)

dlink/go-rt-ac750_firmware 101b03

Published Dec 01, 2023

Tracked Since Feb 18, 2026