D-Link DIR-846 A1_FW100A43 exists to contain a command injection vulnerability via the auto_upgrade_hour parameter in the SetAutoUpgradeInfo function.
dlink dir-846_firmware 100a43