Vulnerability Details CVE-2019-13481
An issue was discovered on D-Link DIR-818LW devices with firmware 2.06betab01. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the MTU field to SetWanSettings.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.072
EPSS Ranking 91.1%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 9.0
References
Products affected by CVE-2019-13481
-
cpe:2.3:h:dlink:dir-818lw:-
-
cpe:2.3:o:dlink:dir-818lw_firmware:2.06