CVE-2021-46441

Published
View on NVD ↗
CVSS v3
8.8
HIGH
CVSS v2
9
HIGH
Affected
1
PROJECT

Description

In the "webupg" binary of D-Link DIR-825 G1, because of the lack of parameter verification, attackers can use "cmd" parameters to execute arbitrary system commands after obtaining authorization.

t0ptop/D-Link-DIR-825
t0ptop/D-Link-DIR-825
D-Link DIR-825 have an unauthorized command injection vulnerability.
GitHubGitHub
5