CVE-2023-0127
published 2023-02-11CVE-2023-0127: A command injection vulnerability in the firmware_update command, in the device's restricted telnet interface, allows an authenticated attacker to execute…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
A command injection vulnerability in the firmware_update command, in the device's restricted telnet interface, allows an authenticated attacker to execute arbitrary commands as root.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dlink | dwl-2600ap_firmware | — | — |