ГлавнаяУязвимости → CVE-2024-11066
7.2высокая

CVE-2024-11066

Описание

The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through the specific web page.

Затрагиваемое ПО
Dlink Dsl6740c firmwareDlink Dsl6740c
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.twcert.org.tw/en/cp-139-8232-5d94e-2.htmlhttps://www.twcert.org.tw/tw/cp-132-8225-3d882-1.htmlhttps://www.bleepingcomputer.com/news/security/d-link-wont-fix-critical-bug-in-60-000-exposed-eol-modems/