Vulnerabilities

CVE-2024-11066

by Fred · 11/11/2024

The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through the specific web page.

More information : https://www.bleepingcomputer.com/news/security/d-link-wont-fix-critical-bug-in-60-000-exposed-eol-modems/

Attack vector : NETWORK
Attack complexity : LOW
Privileges required : HIGH
User interaction : NONE
Confidentiality impact : HIGH
Integrity impact : HIGH
Base score : 7.2
Base severity : HIGH
Exploitability score : 1.2
Impact score : 5.9

Similar

Tags: Cybersecurity Alert