CVE-2024-33344 | D-Link DIR-822+ 1.0.5 upload_firmware.cgi ftext command injection

Posted by Angelo Barbosa | Apr 26, 2024 | CVE

A vulnerability was found in D-Link DIR-822+ 1.0.5. It has been classified as critical. Affected is the function ftext of the file upload_firmware.cgi. The manipulation leads to command injection.

This vulnerability is traded as CVE-2024-33344. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-33344 | D-Link DIR-822+ 1.0.5 upload_firmware.cgi ftext command injection

Related Posts

CVE-2024-2478 | BradWenqiang HR 2.0 Background Management /bishe/register selectAll userName sql injection

CVE-2024-0413 | DeShang DSKMS up to 3.1.2 public/install.php access control

CVE-2024-3617 | SourceCodester Kortex Lite Advocate Office Management System 1.0 deactivate_case.php id sql injection

CVE-2024-48788 | YESCAM com.yescom.YesCam.zwave 1.0.2 Firmware Update information disclosure