The vulnerability of the SetPlcNetworkpwd() function in the prog.cgi script of the D-Link DIR-822+ wireless router’s microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the SetPlcNetworkpwd function in the prog.cgi script of the D-Link DIR-822+ wireless router microprogramming system is related to the failure to take measures to neutralize special elements used in the operating system’s command when processing the localplc parameter...

CVE-2024-33342

D-Link DIR-822+ V1.0.5 was found to contain a command injection in SetPlcNetworkpwd function of prog.cgi, which allows remote attackers to execute arbitrary commands via shell...

D-Link DIR-822 安全漏洞

The D-Link DIR-822 is a wireless router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-822+ version V1.0.5, which originates from a command injection contained in the SetPlcNetworkpwd function of prog.cgi, allowing remote attackers to execute arbitrary commands via...

CVE-2024-33342

D-Link DIR-822+ V1.0.5 was found to contain a command injection in SetPlcNetworkpwd function of prog.cgi, which allows remote attackers to execute arbitrary commands via shell...

CVE-2024-33342

CVE-2024-33342 affects D-Link DIR-822+ (V1.0.5). A command injection exists in the SetPlcNetworkpwd function of prog.cgi, enabling remote attackers to execute arbitrary shell commands. Impact is remote code execution with network access, no user interaction required. Public sources (NVD/Red Hat/C...