2 matches found
CVE-2023-0127
A command injection vulnerability in the firmwareupdate command, in the device's restricted telnet interface, allows an authenticated attacker to execute arbitrary commands as root...
CVE-2023-0127
Affected product: D-Link DWL-2600AP (wireless access point). Vulnerability: Command injection in the firmware_update command exposed via the device’s restricted telnet interface. Root cause: improper handling in firmware_update allows an authenticated user to inject and execute arbitrary commands...