CVE-2022-46476

Description

D-Link DIR-859 A1 1.05 was discovered to contain a command injection vulnerability via the service= variable in the soapcgi_main function.

Related CPE's

odlinkdir-859_a1_firmware1.05*******

hdlinkdir-859_a1-*******

References

https://github.com/Insight8991/iot/blob/main/dir859%20Command%20Execution%20Vulnerability.md

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io