Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
On D-Link DIR-620 devices with a certain customized (by ISP) variant of firmware 1.0.3, 1.0.37, 1.3.1, 1.3.3, 1.3.7, 1.4.0, and 2.0.22, OS command injection is possible as a result of incorrect processing of the res_buf parameter to index.cgi.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
D-Link DIR-620 操作系统命令注入漏洞
Vulnerability Description
D-link DIR-620是友讯(D-Link)公司的一款无线路由器产品。 D-Link DIR-620中存在操作系统命令注入漏洞,该漏洞源于程序没有正确的处理传递到index.cgi文件的‘res_buf’参数。攻击者可利用该漏洞执行操作系统命令。使用以下版本固件的产品受影响:firmware 1.0.3版本,1.0.37版本,1.3.1版本,1.3.3版本,1.3.7版本,1.4.0版本,2.0.22版本。
CVSS Information
N/A
Vulnerability Type
N/A