CVE-2023-33625 Information

Jun 13, 2023 cve

Description

D-Link DIR-600 Hardware Version B5 Firmware Version 2.18 was discovered to contain a command injection vulnerability via the ST parameter in the lxmldbc_system() function.

Reference

https://www.dlink.com/en/security-bulletin/ https://hackmd.io/@naihsin/By2datZD2 https://github.com/naihsin/IoT/blob/main/D-Link/DIR-600/cmd%20injection/README.md https://github.com/naihsin/IoT/tree/main/D-Link/DIR-600/cmd%20injection

Share on: