RCE in Dlink Dsr-1000

CVE-2013-5946

The runShellCmd function in systemCheck.htm in D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmw…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.065 (92.9th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References