Vulnerabilities

CVE-2021-44127

by Fred · 27/03/2022

In DLink DAP-1360 F1 firmware version <=v6.10 in the "webupg" binary, an attacker can use the "file" parameter to execute arbitrary system commands when the parameter is "name=deleteFile" after being authorized. Date published : 2022-03-27 https://github.com/tgp-top/DAP-1360/blob/main/README.md

https://www.dlink.com/en/security-bulletin/

Similar

Tags: Cybersecurity Alert