CVE-2024-48632

D-Link DIR882FW130B06 and DIR878 DIR878FW130B08 were discovered to contain multiple command injection vulnerabilities via the LocalIPAddress, TCPPorts, and UDPPorts parameters in the SetPortForwardingSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a...

CVE-2024-48632

D-Link DIR-878 (DIR 878 FW130B08) and DIR-882 (DIR 882 FW130B06) routers are affected by command-injection vulnerabilities in SetPortForwardingSettings implemented in prog.cgi. The root cause is improper neutralization of input (LocalIPAddress, TCPPorts, UDPPorts) that enables remote attackers to...