Lucene search
+L

4 matches found

bdu_fstec
bdu_fstec
added 2018/11/16 12:0 a.m.6 views

The vulnerability of the web interface of D-Link’s microprogrammed router software allows a hacker to execute arbitrary code.

The vulnerability of the web interface of D-Link microprogramming software for routers is related to the insufficient neutralization of special elements used in the OS command. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted value of the...

9.1CVSS8.1AI score0.78191EPSS
Exploits5References5Affected Software6
osv
osv
added 2018/10/17 2:29 p.m.3 views

CVE-2018-10823

An issue was discovered on D-Link DWR-116 through 1.06, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. An authenticated attacker may execute arbitrary code by injecting the shell command into the chkisg.htm page Sip...

8.8CVSS6AI score0.78191EPSS
Exploits5References2
nvd
nvd
added 2018/10/17 2:29 p.m.21 views

CVE-2018-10823

An issue was discovered on D-Link DWR-116 through 1.06, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. An authenticated attacker may execute arbitrary code by injecting the shell command into the chkisg.htm page Sip...

9CVSS8.9AI score0.78191EPSS
Exploits5References2
exploitdb
exploitdb
added 2018/10/12 12:0 a.m.73 views

D-Link Routers - Command Injection

Shell command injection CVE: CVE-2018-10823 CVSS v3: 9.1 AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H Description: An issue was discovered on D-Link routers: DWR-116 through 1.06, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, DWR-111 through 1.01, and probably...

9CVSS8.8AI score0.78191EPSS
Exploits5
Rows per page
Query Builder