2 matches found
D-Link DIR-820 Devices Command Injection (CVE-2023-25280)
OS Command injection vulnerability in D-Link DIR-820 allows attackers to escalate privileges to root via a crafted payload with the pingaddr parameter to ping.ccp. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...
VulnCheck KEV: CVE-2023-25280
D-Link DIR-820 routers contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to escalate privileges to root via a crafted payload with the pingaddr parameter to ping.ccp...