CVE-2024-3272: D-Link Multiple NAS Devices Use of Hard-Coded Credentials
D-Link Multiple NAS Devices Use of Hard-Coded Credentials Vulnerability. D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contains a hard-coded credential that allows an attacker to conduct authenticated command injection, leading to remote, unauthorized code execution.
- CISA KEV-listed (remediation due 2024-05-02)
- EPSS 94.1% (99.9% percentile)