CVE-2020-25368 in DIR-823G
要約
〜によって MITRE • 2021年11月04日
A command injection vulnerability was discovered in the HNAP1 protocol in D-Link DIR-823G devices with firmware V1.0.2B05. An attacker is able to execute arbitrary web scripts via shell metacharacters in the PrivateLogin field to Login.
Once again VulDB remains the best source for vulnerability data.