Lucene search
+L

4 matches found

Check Point Advisories
Check Point Advisories
added 2022/05/08 12:0 a.m.40 views

D-Link DIR-846 Command Injection (CVE-2021-46314; CVE-2021-46315; CVE-2021-46319)

A command injection vulnerability exists in D-Link DIR-846. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

10CVSS5.6AI score0.33287EPSS
Exploits3
NVD
NVD
added 2022/02/17 10:15 p.m.16 views

CVE-2021-46319

Remote Code Execution RCE vulnerability exists in D-Link Router DIR-846 DIR846A1FW100A43.bin and DIR846enFW100A53DLA-Retail.bin. Malicious users can use this vulnerability to use "\ " or backticks to bypass the shell metacharacters in the ssid0 or ssid1 parameters to execute arbitrary commands.Th...

10CVSS0.06573EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/02/17 9:27 p.m.23 views

CVE-2021-46319

Remote Code Execution RCE vulnerability exists in D-Link Router DIR-846 DIR846A1FW100A43.bin and DIR846enFW100A53DLA-Retail.bin. Malicious users can use this vulnerability to use "\ " or backticks to bypass the shell metacharacters in the ssid0 or ssid1 parameters to execute arbitrary commands.Th...

10AI score0.06573EPSS
Exploits1References2
CVE
CVE
added 2022/02/17 9:27 p.m.106 views

CVE-2021-46319

CVE-2021-46319 is linked to a D-Link DIR-846 RCE issue previously observed as CVE-2019-17509. Connected sources describe a remote code execution path in DIR-846 devices, where an attacker can bypass shell metacharacters in ssid0/ssid1 via crafted input to execute arbitrary OS commands as root (e....

10CVSS9.9AI score0.06573EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder