Unpatched Vulnerability in D-Link NAS Devices Exploited in the Wild

An unpatched vulnerability affecting D-Link network-attached storage (NAS) devices has been discovered and is reportedly being exploited in the wild. The vulnerability, identified as CVE-2024-3273, impacts several D-Link NAS models, enabling unauthenticated attackers to execute arbitrary commands on the device. Despite D-Link’s advisory to discontinue using affected devices, exploitation attempts have been observed, highlighting the ongoing threat to D-Link devices and the need for proactive security measures.