CNNVD-202601-1583 Information
CNNVD ID
CNNVD-202601-1583
Related CVE
- CNNVD Published: 2026-01-09
Description (Chinese)
D-Link DI-8200G是中国友讯(D-Link)公司的一款企业级路由器。 D-Link DI-8200G 17.12.20A1版本存在命令注入漏洞,该漏洞源于对文件/upgrade_filter.asp中参数path的错误操作,可能导致命令注入攻击。
Description (English)
D-Link DI-8200G is an enterprise router for the Chinese company D-Link. The D-Link DI-8200G 17.12.20A1 version contains a command-injecting loophole, which stems from an erroneous operation of the parameter path in document/upgrade filter.asp, which could lead to an order-injection attack.
Hazard Level
High
Vulnerability Type
命令注入
Affected Vendor
友讯
Published
2026-01-09
Last Modified
2026-02-24
References
https://vuldb.com/?submit.733275 https://github.com/DavCloudz/cve/blob/main/D-link/DI_8200G/DI_8200G%20V17.12.20A1%20Command%20Execution%20Vulnerability/readme.md#poc https://www.dlink.com/ https://vuldb.com/?id.340129 https://vuldb.com/?ctiid.340129 https://access.redhat.com/security/cve/cve-2026-0732
Share on: