3 matches found
D-Link DIR-846 Command Injection (CVE-2021-46314; CVE-2021-46315; CVE-2021-46319)
A command injection vulnerability exists in D-Link DIR-846. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2021-46314
creationtimestamp| type| source ---|---|--- 2022-02-18 00:37:33+00:00| seen| https://t.me/cibsecurity/37681...
CVE-2021-46314
CVE-2021-46314 targets D-Link DIR-846 routers, with the flaw in HNAP1/control/SetNetworkTomographySettings.php. The issue is a backtick-based command injection in domain-name validation, enabling remote command execution over the network. Public sources (NVD) assign a CVSS v3.1 base score of 9.8 ...