4 matches found
D-Link DIR816L Command Injection (CVE-2022-28915; CVE-2022-28958; CVE-2022-37123; CVE-2022-37125; CVE-2022-37129)
A command injection vulnerability exists in D-Link DIR816L. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2022-37123
D-link DIR-816 A2v1.10CNB04.img is vulnerable to Command injection via /goform/form2userconfig.cgi...
CVE-2022-37123
D-link DIR-816 A2v1.10CNB04.img is vulnerable to Command injection via /goform/form2userconfig.cgi...
CVE-2022-37123
CVE-2022-37123 affects the D-Link DIR-816 DIR-816 A2 firmware 1.10CNB04. The issue is a command-injection vulnerability in the /goform/form2userconfig.cgi API endpoint, enabling potential remote code execution with high impact to confidentiality, integrity, and availability as reflected by the CV...