CVE-2023-48842

D-Link Go-RT-AC750 revA_v101b03 was discovered to contain a command injection vulnerability via the service parameter at hedwig.cgi.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:dlink:go-rt-ac750_firmware:101b03:*:*:*:*:*:*:*
cpe:2.3:h:dlink:go-rt-ac750:revision_a:*:*:*:*:*:*:*

History

06 Dec 2023, 18:54

Type Values Removed Values Added
CPE cpe:2.3:h:dlink:go-rt-ac750:revision_a:*:*:*:*:*:*:*
cpe:2.3:o:dlink:go-rt-ac750_firmware:101b03:*:*:*:*:*:*:*
References () https://drive.google.com/file/d/1y5om__f2SAhNmcPqDxC_SRTvJVAWwPcH/view?usp=drive_linkĀ - () https://drive.google.com/file/d/1y5om__f2SAhNmcPqDxC_SRTvJVAWwPcH/view?usp=drive_linkĀ - Exploit
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
CWE CWE-77

01 Dec 2023, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-12-01 16:15

Updated : 2024-02-05 00:22


NVD link : CVE-2023-48842

Mitre link : CVE-2023-48842

CVE.ORG link : CVE-2023-48842


JSON object : View

Products Affected

dlink

  • go-rt-ac750_firmware
  • go-rt-ac750
CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')