1 results (0.004 seconds)
CVSS: 6.5EPSS: 0%CPEs: 19EXPL: 1
CVSS: 6.5EPSS: 0%CPEs: 19EXPL: 1CVE-2024-7357 – D-Link DIR-600 soap.cgi soapcgi_main os command injection
https://notcve.org/view.php?id=CVE-2024-7357
A vulnerability was found in D-Link DIR-600 up to 2.18. It has been rated as critical. This issue affects the function soapcgi_main of the file /soap.cgi. The manipulation of the argument service leads to os command injection. The attack may be initiated remotely. • https://vuldb.com/?id.273329 https://vuldb.com/?ctiid.273329 https://vuldb.com/?submit.383695 https://github.com/BeaCox/IoT_vuln/tree/main/D-Link/DIR-600/soapcgi_main_injection https://supportannouncement.us.dlink.com/security/publication.aspx?name=SAP10408 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •