CVE-2019-14337
published 2019-08-01CVE-2019-14337: An issue was discovered on D-Link 6600-AP and DWL-3600AP Ax 4.2.0.14 21/03/2019 devices. There is an ability to escape to a shell in the restricted command…
medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
An issue was discovered on D-Link 6600-AP and DWL-3600AP Ax 4.2.0.14 21/03/2019 devices. There is an ability to escape to a shell in the restricted command line interface, as demonstrated by the `/bin/sh -c wget` sequence.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dlink | 6600-ap_firmware | — | — |
| dlink | dwl-3600ap_firmware | — | — |