Directory Traversal vulnerability in D-Link DAP-1650 Firmware v.1.03 allows a local attacker to escalate privileges via the hedwig.cgi component.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HDlink Dap 1650
HWDlinkwszystkie wersjeDlink Dap 1650 Firmware
OSDlink1.03
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Path TraversalLPE
CWE
Related vulnerabilities
CVE-2024-23624CRITICAL9.6PL ✓ten sam produkt
Command injection w D-Link DAP-1650 — nieuwierzytelniony dostęp root
CVE-2024-23625CRITICAL9.6PL ✓ten sam produkt
Command injection w D-Link DAP-1650 przez wiadomości UPnP SUBSCRIBE
CVE-2022-36588CRITICAL9.8ten sam produkt
In D-Link DAP1650 v1.04 firmware, the fileaccess.cgi program in the firmware has a buffer overflow vulnerabili...
CVE-2019-12768CRITICAL9.8ten sam produkt
An issue was discovered on D-Link DAP-1650 devices through v1.03b07 before 1.04B02_J65H Hot Fix. Attackers can...
CVE-2019-12767CRITICAL9.8ten sam produkt
An issue was discovered on D-Link DAP-1650 devices before 1.04B02_J65H Hot Fix. Attackers can execute arbitrar...