CVE-2019-16920 - Vulnerability Details

Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. The issue occurs when the attacker sends an arbitrary input to a "PingTest" device common gateway interface that could lead to common injection. An attacker who successfully triggers the command injection could achieve full system compromise. Later, it was independently found that these are also affected: DIR-855L, DAP-1533, DIR-862L, DIR-615, DIR-835, and DIR-825.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is in the KEV database since March 25, 2022.

The EPSS score is 0.94174.

Exploitation active

Automatable yes

Technical Impact total

Vendors	Products
Dlink Subscribe	Dap-1533 Subscribe Dap-1533 Firmware Subscribe Dhp-1565 Subscribe Dhp-1565 Firmware Subscribe Dir-615 Subscribe Dir-615 Firmware Subscribe Dir-652 Subscribe Dir-652 Firmware Subscribe Dir-655 Subscribe Dir-655 Firmware Subscribe Dir-825 Subscribe Dir-825 Firmware Subscribe Dir-835 Subscribe Dir-835 Firmware Subscribe Dir-855l Subscribe Dir-855l Firmware Subscribe Dir-862l Subscribe Dir-862l Firmware Subscribe Dir-866l Subscribe Dir-866l Firmware Subscribe

Configuration 1 [-]

AND

cpe:2.3:o:dlink:dir-655_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-655:cx:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:dlink:dir-866l_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-866l:ax:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:dlink:dir-652_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-652:ax:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:dlink:dhp-1565_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dhp-1565:ax:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:dlink:dir-855l_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-855l:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:dlink:dap-1533_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dap-1533:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:dlink:dir-862l_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-862l:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:dlink:dir-615_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-615:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:dlink:dir-835_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-835:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:dlink:dir-825_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-825:-:*:*:*:*:*:*:*

No data.

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://fortiguard.com/zeroday/FG-VD-19-117
https://medium.com/%4080vul/determine-the-device-model-affected-by-cve-2019-16920-by-zoomeye-bf6fec7f9bb3
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-16920
https://www.kb.cert.org/vuls/id/766427
https://www.seebug.org/vuldb/ssvid-98079

History

Wed, 22 Oct 2025 00:15:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-16920

Tue, 21 Oct 2025 20:30:00 +0000

Type	Values Removed	Values Added
References	https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-16920

Tue, 21 Oct 2025 19:30:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-16920

Tue, 04 Feb 2025 20:15:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2022-03-25'}` ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-09-27T11:34:12.000Z

Updated: 2025-10-21T23:45:29.886Z

Reserved: 2019-09-27T00:00:00.000Z

Link: CVE-2019-16920

Vulnrichment

Updated: 2024-08-05T01:24:48.593Z

NVD

Status : Analyzed

Published: 2019-09-27T12:15:10.017

Modified: 2025-11-07T19:37:32.660

Link: CVE-2019-16920

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-78

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Exploitation active

Automatable yes

Technical Impact total

Affected Vendors & Products

Projects

JSON object

JSON object

JSON object

JSON object

JSON object