Certain models of D-Link wireless routers do not properly...
High severity
Unreviewed
Published
Sep 16, 2024
to the GitHub Advisory Database
•
Updated Sep 20, 2024
Description
Published by the National Vulnerability Database
Sep 16, 2024
Published to the GitHub Advisory Database
Sep 16, 2024
Last updated
Sep 20, 2024
Certain models of D-Link wireless routers do not properly validate user input in the telnet service, allowing unauthenticated remote attackers to use hard-coded credentials to log into telnet and inject arbitrary OS commands, which can then be executed on the device.
References