CVE-2019-17509

Posted on by admin

CVE-2019-17509

D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary OS commands as root by leveraging admin access and sending a /HNAP1/ request for SetMasterWLanSettings with shell metacharacters to /squashfs-root/www/HNAP1/control/SetMasterWLanSettings.php.

Source: CVE-2019-17509

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다