CNNVD-202602-1214 Information

CNNVD ID

CNNVD-202602-1214

Related CVE

CVE-2026-2151

• CNNVD Published: 2026-02-08

Description (Chinese)

D-Link DIR-615是中国友讯（D-Link）公司的一款无线路由器。 D-Link DIR-615 4.10版本存在操作系统命令注入漏洞，该漏洞源于对文件adv_firewall.php中参数dmz_ipaddr的错误操作，可能导致os命令注入。

Description (English)

D-Link DIR-615 is a wireless router for the Chinese company D-Link. Version D-Link DIR-615 4.10 contains a bug in the operating system command, which results from an error in the parameter dmz ipaddr in file adv firewall.php, which may lead to an Os command injection.

Hazard Level

Medium

Vulnerability Type

操作系统命令注入

Affected Vendor

友讯

Published

2026-02-08

Last Modified

2026-02-24

References

https://pentagonal-time-3a7.notion.site/DIR-615-OS-Command-Injection-2f6e5dd4c5a58053b2b4f166c2a503ba https://vuldb.com/?ctiid.344853 https://vuldb.com/?submit.748031 https://www.dlink.com/ https://vuldb.com/?id.344853 https://access.redhat.com/security/cve/cve-2026-2151