3 matches found
CVE-2022-37125
D-link DIR-816 A2v1.10CNB04.img is vulnerable to Command injection via /goform/NTPSyncWithHost...
D-Link DIR816L Command Injection (CVE-2022-28915; CVE-2022-28958; CVE-2022-37123; CVE-2022-37125; CVE-2022-37129)
A command injection vulnerability exists in D-Link DIR816L. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2022-37125
CVE-2022-37125 affects D-Link DIR-816 A2, specifically the /goform/NTPSyncWithHost endpoint. The connected documents consistently indicate a command injection vulnerability in the DIR-816 A2_v1.10CNB04.img, enabling arbitrary command execution via that API. The CVE entry lists a high/critical imp...