CVE-2023-0127
- EPSS 0.41%
- Published 11.02.2023 18:15:11
- Last modified 24.03.2025 15:15:14
A command injection vulnerability in the firmware_update command, in the device's restricted telnet interface, allows an authenticated attacker to execute arbitrary commands as root.
CVE-2019-20499
- EPSS 92.72%
- Published 05.03.2020 15:15:11
- Last modified 21.11.2024 04:38:37
D-Link DWL-2600AP 4.2.0.15 Rev A devices have an authenticated OS command injection vulnerability via the Restore Configuration functionality in the Web interface, using shell metacharacters in the admin.cgi?action=config_restore configRestore or con...
CVE-2019-20500
- EPSS 93.66%
- Published 05.03.2020 15:15:11
- Last modified 14.03.2025 20:50:11
D-Link DWL-2600AP 4.2.0.15 Rev A devices have an authenticated OS command injection vulnerability via the Save Configuration functionality in the Web interface, using shell metacharacters in the admin.cgi?action=config_save configBackup or downloadSe...
CVE-2019-20501
- EPSS 25.79%
- Published 05.03.2020 15:15:11
- Last modified 21.11.2024 04:38:37
D-Link DWL-2600AP 4.2.0.15 Rev A devices have an authenticated OS command injection vulnerability via the Upgrade Firmware functionality in the Web interface, using shell metacharacters in the admin.cgi?action=upgrade firmwareRestore or firmwareServe...