3 matches found
CVE-2019-8312
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST...
CVE-2019-8312
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST...
CVE-2019-8312
The CVE-2019-8312 entry affects D-Link DIR-878 devices running firmware 1.12A1. Affected component: HNAP API functionality, specifically SetSysLogSettings. Root cause: untrusted input in the IPAddress field is processed via a call to the twsystem function, enabling a remote attacker to inject com...