The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through the specific web page.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HDlink Dsl6740c
HWDlinkwszystkie wersjeDlink Dsl6740c Firmware
OSDlinkwszystkie wersje
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
Command Injection
CWE
Powiązane podatności
CVE-2024-11068CRITICAL9.8PL ✓ten sam produkt
D-Link DSL6740C: zdalne przejęcie konta przez błędne użycie uprzywilejowanych API
CVE-2024-11062HIGH7.2ten sam produkt
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administra...
CVE-2024-11063HIGH7.2ten sam produkt
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administra...
CVE-2024-11064HIGH7.2ten sam produkt
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administra...
CVE-2024-11065HIGH7.2ten sam produkt
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administra...