CVE-2023-43202 Information

Description

D-LINK DWL-6610 FW_v_4.3.0.8B003C was discovered to contain a command injection vulnerability in the function pcap_download_handler. This vulnerability allows attackers to execute arbitrary commands via the update.device.packet-capture.tftp-file-name parameter.

Reference

https://github.com/Archerber/bug_submit/blob/main/D-Link/DWL-6610/bug4.md