CVE-2024-3273: D-Link NAS Backdoor Account + Command Injection

Q: Do D-Link NAS devices contain backdoors?

Yes, CVE-2024-3273 reveals a hardcoded backdoor account and command injection in D-Link NAS devices. Over 92,000 exposed devices with no available patch.

CRITICAL

9.8CRITICAL

Published: 2024-04-04Affected: D-Link DNS-320L, DNS-325, DNS-327L, DNS-340LCWE-78 ↗

Do D-Link NAS devices contain backdoors?

Multiple end-of-life D-Link NAS devices contain a hardcoded backdoor account and a command injection vulnerability in the nas_sharing.cgi endpoint. Unauthenticated attackers can execute arbitrary commands on the device.

Impact & Exploitation

Over 92,000 devices exposed on the internet. Devices are end-of-life with no patch available. Used for botnet recruitment, crypto mining, and as pivot points for internal network attacks.

How Precogs AI Detects D-Link NAS Backdoor Account + Command Injection

Precogs AI Binary SAST detects hardcoded credentials and command injection in compiled NAS and IoT firmware, identifying backdoor accounts in end-of-life network devices.

Scan for CVE-2024-3273

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

CVE-2024-3273: D-Link NAS Backdoor Account + Command Injection

Do D-Link NAS devices contain backdoors?

Impact & Exploitation

How Precogs AI Detects D-Link NAS Backdoor Account + Command Injection

Precogs Research

Base Score

Tags

Quick Links

Is your system affected?

Do D-Link NAS devices contain backdoors?

Impact & Exploitation

How Precogs AI Detects D-Link NAS Backdoor Account + Command Injection

Related Resources

🔍 Related CWE Entries

📋 OWASP Top 10

📖 Security Guides

🛡️ Notable Vulnerabilities

🔗 External References

Precogs Research

Base Score

Tags

Quick Links

Is your system affected?