On D-Link DIR-550A and DIR-604M devices through v2.10KR, a malicious user can forge an HTTP request to inject operating system commands that can be executed on the device with higher privileges, aka remote code execution.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
d-link dir-550a_firmware |
||
d-link dir-604m_firmware |