OS Command Injection Vulnerability in D-Link DSL-3782 Firmware 1.01

OS Command Injection Vulnerability in D-Link DSL-3782 Firmware 1.01

CVE-2018-17990 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

An issue was discovered on D-Link DSL-3782 devices with firmware 1.01. An OS command injection vulnerability in Acl.asp allows a remote authenticated attacker to execute arbitrary OS commands via the ScrIPaddrEndTXT parameter.

Learn more about our Web Application Penetration Testing UK.