Cyber Resilience

CVE-2022-37055

CriticalCISA KEVActive ExploitationEUVD ExploitedPublic PoC

Published: 28 August 2022

Published
28 August 2022
Modified
10 December 2025
KEV Added
08 December 2025
Patch
CVSS Score v3.1 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.8188 99.2th percentile
Risk Priority 89 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2022-37055 is a critical-severity Classic Buffer Overflow (CWE-120) vulnerability in Dlink Go-Rt-Ac750 Firmware. Its CVSS base score is 9.8 (Critical).

Operationally, ranked in the top 0.8% of CVEs by exploit likelihood; CISA has added it to the Known Exploited Vulnerabilities catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).

Deeper analysis

D-Link Go-RT-AC750 routers running firmware GORTAC750_revA_v101b03 and GO-RT-AC750_revB_FWv200b02 contain a buffer overflow vulnerability (CWE-120) reachable through the cgibin hnap_main component. The flaw carries a CVSS 3.1 base score of 9.8 and permits unauthenticated network access that can result in full confidentiality, integrity, and availability impact.

An attacker with network adjacency to an affected device can send crafted requests to the HNAP endpoint without credentials or user interaction, enabling arbitrary code execution or device takeover. The published EPSS score of 0.8048 (peak 0.8291) indicates sustained exploitation interest since disclosure.

D-Link has issued security publication SAP10308 and corresponding bulletins at supportannouncement.us.dlink.com and www.dlink.com/en/security-bulletin/ that address the affected firmware versions.

EU & UK References

Vulnerability details

D-Link Go-RT-AC750 GORTAC750_revA_v101b03 and GO-RT-AC750_revB_FWv200b02 are vulnerable to Buffer Overflow via cgibin, hnap_main,

CWE(s)
KEV Date Added
08 December 2025

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

dlink
go-rt-ac750 firmware
1.01b03, 2.00b02

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly requires validation of all inputs to the hnap_main/cgibin interface, preventing the crafted requests that trigger the CWE-120 buffer overflow.

prevent

Applies memory-protection mechanisms (e.g., ASLR, non-executable stacks) that block successful exploitation of the overflow into arbitrary code execution.

prevent

Mandates prompt application of the vendor firmware updates referenced in SAP10308 that eliminate the vulnerable code path.

References