Unrated severityCISA KEVNVD Advisory· Published Mar 5, 2020· Updated Oct 21, 2025
CVE-2019-20500
CVE-2019-20500
Description
D-Link DWL-2600AP 4.2.0.15 Rev A devices have an authenticated OS command injection vulnerability via the Save Configuration functionality in the Web interface, using shell metacharacters in the admin.cgi?action=config_save configBackup or downloadServerip parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- D-Link/DWL-2600APdescription
- Range: = 4.2.0.15 Rev A
Patches
Vulnerability mechanics
References
2- supportannouncement.us.dlink.com/announcement/publication.aspxmitrex_refsource_MISC
- www.exploit-db.com/exploits/46841mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.