2 matches found
D-Link DAP-1860 Command Injection (CVE-2019-19597)
A command injection vulnerability exists in D-Link DAP-1860. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2019-19597
CVE-2019-19597 affects D-Link DAP-1860 devices prior to v1.04b03 Beta. The issue allows arbitrary remote code execution as root without authentication via shell metacharacters within the HNAP_AUTH HTTP header, indicating a remote command execution vulnerability in the HNAP handler. Impact is unre...