CVE-2010-4964

CWE-94Code Injection3 documents3 sources
Severity
9.0CRITICAL
EPSS
1.8%
top 17.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Dlink Dcs-2121 Firmware
Timeline
PublishedOct 16
Latest updateMay 17

Description

recorder_test.cgi on the D-Link DCS-2121 camera with firmware 1.04 allows remote attackers to execute arbitrary commands via shell metacharacters in the Password field, related to a "semicolon injection" vulnerability.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 8.0 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-xgrc-wxf2-c646: recorder_test2022-05-17
CVEList
CVE-2010-4964: recorder_test2011-10-16
CVE-2010-4964 (CRITICAL CVSS 9) | recorder_test.cgi on the D-Link DCS | cvebase.io