CVE-2016-20017 Information

Description

D-Link DSL-2750B devices before 1.05 allow remote unauthenticated command injection via the login.cgi cli parameter as exploited in the wild in 2016 through 2022.

Reference

https://www.exploit-db.com/exploits/44760 https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10088 https://seclists.org/fulldisclosure/2016/Feb/53