CVE-2021-44882
published 2022-02-04CVE-2021-44882: D-Link device DIR_878_FW1.30B08_Hotfix_02 was discovered to contain a command injection vulnerability in the twsystem function. This vulnerability allows…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
D-Link device DIR_878_FW1.30B08_Hotfix_02 was discovered to contain a command injection vulnerability in the twsystem function. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dlink | dir-878_firmware | <= 1.20b05 | — |
| dlink | dir-878_firmware | — | — |