Metrics
Affected Vendors & Products
Tue, 27 Aug 2024 16:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Dlink
Dlink dnr-202l Dlink dnr-202l Firmware Dlink dnr-322l Dlink dnr-322l Firmware Dlink dnr-326 Dlink dnr-326 Firmware Dlink dns-1100-4 Dlink dns-1100-4 Firmware Dlink dns-120 Dlink dns-1200-05 Dlink dns-1200-05 Firmware Dlink dns-120 Firmware Dlink dns-1550-04 Dlink dns-1550-04 Firmware Dlink dns-315l Dlink dns-315l Firmware Dlink dns-320 Dlink dns-320 Firmware Dlink dns-320l Dlink dns-320l Firmware Dlink dns-320lw Dlink dns-320lw Firmware Dlink dns-321 Dlink dns-321 Firmware Dlink dns-323 Dlink dns-323 Firmware Dlink dns-325 Dlink dns-325 Firmware Dlink dns-326 Dlink dns-326 Firmware Dlink dns-327l Dlink dns-327l Firmware Dlink dns-340l Dlink dns-340l Firmware Dlink dns-343 Dlink dns-343 Firmware Dlink dns-345 Dlink dns-345 Firmware Dlink dns-726-4 Dlink dns-726-4 Firmware |
|
Weaknesses | CWE-78 | |
CPEs | cpe:2.3:h:dlink:dnr-202l:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dnr-322l:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dnr-326:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-1100-4:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-1200-05:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-120:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-1550-04:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-315l:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-320:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-320l:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-320lw:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-321:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-323:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-325:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-326:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-327l:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-340l:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-343:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-345:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dns-726-4:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dnr-202l_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dnr-322l_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dnr-326_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-1100-4_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-1200-05_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-120_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-1550-04_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-315l_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-320_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-320l_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-320lw_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-321_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-323_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-325_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-326_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-327l_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-340l_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-343_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-345_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dns-726-4_firmware:-:*:*:*:*:*:*:* |
|
Vendors & Products |
Dlink
Dlink dnr-202l Dlink dnr-202l Firmware Dlink dnr-322l Dlink dnr-322l Firmware Dlink dnr-326 Dlink dnr-326 Firmware Dlink dns-1100-4 Dlink dns-1100-4 Firmware Dlink dns-120 Dlink dns-1200-05 Dlink dns-1200-05 Firmware Dlink dns-120 Firmware Dlink dns-1550-04 Dlink dns-1550-04 Firmware Dlink dns-315l Dlink dns-315l Firmware Dlink dns-320 Dlink dns-320 Firmware Dlink dns-320l Dlink dns-320l Firmware Dlink dns-320lw Dlink dns-320lw Firmware Dlink dns-321 Dlink dns-321 Firmware Dlink dns-323 Dlink dns-323 Firmware Dlink dns-325 Dlink dns-325 Firmware Dlink dns-326 Dlink dns-326 Firmware Dlink dns-327l Dlink dns-327l Firmware Dlink dns-340l Dlink dns-340l Firmware Dlink dns-343 Dlink dns-343 Firmware Dlink dns-345 Dlink dns-345 Firmware Dlink dns-726-4 Dlink dns-726-4 Firmware |
Mon, 26 Aug 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
D-link
D-link dnr-202l D-link dnr-322l D-link dnr-326 D-link dns-1100-4 D-link dns-120 D-link dns-1200-05 D-link dns-1550-04 D-link dns-315l D-link dns-320 D-link dns-320l D-link dns-320lw D-link dns-321 D-link dns-323 D-link dns-325 D-link dns-326 D-link dns-327l D-link dns-340l D-link dns-343 D-link dns-345 D-link dns-726-4 |
|
CPEs | cpe:2.3:h:d-link:dnr-202l:*:*:*:*:*:*:*:* cpe:2.3:h:d-link:dnr-322l:*:*:*:*:*:*:*:* cpe:2.3:h:d-link:dnr-326:-:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-1100-4:*:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-1200-05:*:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-120:*:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-1550-04:*:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-315l:*:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-320:*:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-320l:-:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-320lw:-:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-321:*:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-323:*:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-325:-:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-326:*:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-327l:-:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-340l:*:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-343:*:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-345:-:*:*:*:*:*:*:* cpe:2.3:h:d-link:dns-726-4:*:*:*:*:*:*:*:* |
|
Vendors & Products |
D-link
D-link dnr-202l D-link dnr-322l D-link dnr-326 D-link dns-1100-4 D-link dns-120 D-link dns-1200-05 D-link dns-1550-04 D-link dns-315l D-link dns-320 D-link dns-320l D-link dns-320lw D-link dns-321 D-link dns-323 D-link dns-325 D-link dns-326 D-link dns-327l D-link dns-340l D-link dns-343 D-link dns-345 D-link dns-726-4 |
|
Metrics |
ssvc
|
Sat, 24 Aug 2024 16:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814 and classified as critical. Affected by this vulnerability is the function cgi_s3 of the file /cgi-bin/s3.cgi of the component HTTP POST Request Handler. The manipulation of the argument f_a_key leads to command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: Vendor was contacted early and confirmed that the product is end-of-life. It should be retired and replaced. | |
Title | D-Link DNS-1550-04 HTTP POST Request s3.cgi cgi_s3 command injection | |
Weaknesses | CWE-77 | |
References |
| |
Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published: 2024-08-24T16:31:05.950Z
Updated: 2024-08-26T16:24:18.306Z
Reserved: 2024-08-23T18:29:55.401Z
Link: CVE-2024-8130
Updated: 2024-08-26T15:32:56.873Z
Status : Analyzed
Published: 2024-08-24T17:15:03.290
Modified: 2024-08-27T15:34:08.287
Link: CVE-2024-8130
No data.