5 matches found
CVE-2024-57595
DLINK DIR-825 REVB 2.03 devices have an OS command injection vulnerability in the CGl interface apcclientpin.cgi, which allows remote attackers to execute arbitrary commands via the parameter "wpspin" passed to the apcclientpin.cgi binary through a POST request...
CVE-2024-57595
creationtimestamp| type| source ---|---|--- 2025-01-27 14:44:12+00:00| seen| https://infosec.exchange/users/cve/statuses/113900850509943269 2025-01-27 15:15:56+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgqaasgswj2i 2025-01-27 18:48:17+00:00| seen|...
CVE-2024-57595
DLINK DIR-825 REVB 2.03 devices have an OS command injection vulnerability in the CGl interface apcclientpin.cgi, which allows remote attackers to execute arbitrary commands via the parameter "wpspin" passed to the apcclientpin.cgi binary through a POST request...
CVE-2024-57595
CVE-2024-57595 affects D-Link DIR-825 REVB v2.03. The issue is an OS command injection in the CGl interface apc_client_pin.cgi, exploitable remotely by sending a crafted wps_pin parameter via POST to apc_client_pin.cgi, allowing arbitrary command execution. Impact is high (remote, unauthenticated...
CVE-2024-57595
DLINK DIR-825 REVB 2.03 devices have an OS command injection vulnerability in the CGl interface apcclientpin.cgi, which allows remote attackers to execute arbitrary commands via the parameter "wpspin" passed to the apcclientpin.cgi binary through a POST request...