VYPR
Unrated severityNVD Advisory· Published Aug 31, 2022· Updated Aug 3, 2024

CVE-2022-37130

CVE-2022-37130

Description

In D-Link DIR-816 A2_v1.10CNB04, DIR-878 DIR_878_FW1.30B08.img a command injection vulnerability occurs in /goform/Diagnosis, after the condition is met, setnum will be spliced into v10 by snprintf, and the system will be executed, resulting in a command injection vulnerability

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Dlink/DIR-816cpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: A2_v1.10CNB04
  • Dlink/DIR878llm-fuzzy
    Range: FW1.30B08

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.