Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
D-Link DCS-850L Firmware Update Service uploadfirmware path traversal
Vulnerability Description
A vulnerability was found in D-Link DCS-850L 1.02.09. Affected is the function uploadfirmware of the component Firmware Update Service. The manipulation of the argument DownloadFile results in path traversal. The attack must originate from the local network. The exploit has been made public and could be used. This vulnerability only affects products that are no longer supported by the maintainer.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
D-Link DCS-850L 路径遍历漏洞
Vulnerability Description
D-Link DCS-850L是中国友讯(D-Link)公司的一款无线网络摄影机。 D-Link DCS-850L 1.02.09版本存在路径遍历漏洞,该漏洞源于对组件Firmware Update Service中参数DownloadFile的错误操作,可能导致路径遍历。
CVSS Information
N/A
Vulnerability Type
N/A