The vulnerability of the SetStaticRouteIPv4Settings() function in the web interface for managing D-Link DIR-1935 router microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the SetStaticRouteIPv4Settings function in the web interface for managing D-Link DIR-1935 router microprogramming software is related to the failure of the system to properly validate the input data entered by the user when processing the StaticRouteIPv4Data element. Exploiti...

D-Link DIR-1935 SetStaticRouteIPv4Settings StaticRouteIPv4Data Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handli...