Over 92,000 D-Link NAS devices face compromise risk

More than 92,000 outdated internet-exposed D-Link Network Attached Storage devices could be breached in attacks exploiting a newly discovered arbitrary command injection and hardcoded backdoor vulnerability, tracked as CVE-2024-3273, which could result in sensitive data access, system configuration modifications, and denial-of-service conditions, reports Security Affairs.

access attacks backdoor breached command command injection compromise conditions configuration cve cve-2024 data data access devices d-link d-link nas endpointdevice-security exploiting exposed hardcoded injection internet link modifications nas network network security reports result risk security sensitive sensitive data service storage system vulnerability