In the "webupg" binary of D-Link DIR-825 G1, attackers can bypass authentication through parameters "autoupgrade.asp", and perform functions such as downloading configuration files and updating firmware without authorization.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-04-27T10:10:37
Updated: 2024-08-04T05:10:33.818Z
Reserved: 2022-01-24T00:00:00
Link: CVE-2021-46442
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-04-27T11:15:44.220
Modified: 2022-05-07T02:27:26.343
Link: CVE-2021-46442
Redhat
No data.