CVE-2019-7297
CVE-2019-7297 affects D-Link DIR-823G devices with firmware up to 1.02B03. A command-injection vulnerability exists in the /HNAP1 interface: GetNetworkTomographyResult calls system with an untrusted Address input, allowing remote attackers to execute arbitrary OS commands via crafted requests. Ex...