Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
D-Link DIR-890L/DIR-806A1 soap.cgi sub_175C8 command injection
Vulnerability Description
A vulnerability classified as critical has been found in D-Link DIR-890L and DIR-806A1 up to 100CNb11/108B03. Affected is the function sub_175C8 of the file /htdocs/soap.cgi. The manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
在命令中使用的特殊元素转义处理不恰当(命令注入)
Vulnerability Title
D-Link DIR-890L和D-Link DIR-806A1 安全漏洞
Vulnerability Description
D-Link DIR-890L和D-Link DIR-806A1都是中国友讯(D-Link)公司的产品。D-Link DIR-890L是一款无线路由器。D-Link DIR-806A1是一款双频无线路由器,支持AC750无线速率和USB共享功能。 D-Link DIR-890L和D-Link DIR-806A1存在安全漏洞,该漏洞源于文件/htdocs/soap.cgi中函数sub_175C8存在命令注入漏洞。
CVSS Information
N/A
Vulnerability Type
N/A