Описание
A vulnerability was detected in D-Link DWR-M961 1.1.47. The impacted element is the function sub_4250E0 of the file /boafrm/formSmsManage of the component SMS Message. Performing a manipulation of the argument action_value results in command injection. The attack may be initiated remotely. The exploit is now public and may be used.
EPSS
6.3 Medium
CVSS3
6.5 Medium
CVSS2
Дефекты
Связанные уязвимости
A vulnerability was detected in D-Link DWR-M961 1.1.47. The impacted element is the function sub_4250E0 of the file /boafrm/formSmsManage of the component SMS Message. Performing a manipulation of the argument action_value results in command injection. The attack may be initiated remotely. The exploit is now public and may be used.
Уязвимость функции sub_4250E0() (/boafrm/formSmsManage) микропрограммного обеспечения маршрутизаторов D-Link DWR-M961, позволяющая нарушителю выполнить произвольные команды
EPSS
6.3 Medium
CVSS3
6.5 Medium
CVSS2