Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
D-Link WiFi router - OS Command Injection
Vulnerability Description
Certain models of D-Link wireless routers do not properly validate user input in the telnet service, allowing unauthenticated remote attackers to use hard-coded credentials to log into telnet and inject arbitrary OS commands, which can then be executed on the device.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
D-Link DIR-X4860 操作系统命令注入漏洞
Vulnerability Description
D-Link DIR-X4860是中国友讯(D-Link)公司的一款无线路由器。 D-Link DIR-X4860存在操作系统命令注入漏洞,该漏洞源于没有正确验证telnet服务中的用户输入,从而允许未经身份验证的远程攻击者使用硬编码凭据登录telnet并注入任意操作系统命令。
CVSS Information
N/A
Vulnerability Type
N/A