CVE-2024-7436 | D-Link DI-8100 16.07 msp_info.htm msp_info_htm cmd command injection

Posted by Angelo Barbosa | Aug 2, 2024 | CVE

A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07. This issue affects the function msp_info_htm of the file msp_info.htm. The manipulation of the argument cmd leads to command injection.

The identification of this vulnerability is CVE-2024-7436. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-7436 | D-Link DI-8100 16.07 msp_info.htm msp_info_htm cmd command injection

Related Posts

CVE-2024-2394 | SourceCodester Employee Management System 1.0 /Admin/add-admin.php avatar unrestricted upload

CVE-2024-23838 | TrueLayer prior 1.6.0 server-side request forgery

CVE-2024-5672 | Red Lion Europe mbNET.mini up to 2.2.11 GET Request os command injection (VDE-2024-030)

CVE-2024-6329 | GitLab Community Edition/Enterprise Edition up to 17.0.5/17.1.3/17.2.1 Web Interface escape output (Issue 468937)