AI Score
Confidence
High
EPSS
Percentile
68.9%
In DLink DAP-1360 F1 firmware version <=v6.10 in the “webupg” binary, an attacker can use the “file” parameter to execute arbitrary system commands when the parameter is “name=deleteFile” after being authorized.
github.com/tgp-top/DAP-1360/blob/main/README.md
www.dlink.com/en/security-bulletin/