CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-9377

D-Link DIR-610 devices allow Remote Command Execution via the cmd parameter to command.php. NOTE: This vulnerability only affects products that are no longer supported by the maintainer

Exploit prediction scoring system (EPSS) score

EPSS Score 0.766

EPSS Ranking 98.9%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.5

Proposed Action

D-Link DIR-610 devices allow remote code execution via the cmd parameter to command.php.

Ransomware Campaign

Unknown

References

https://gist.github.com/GouveaHeitor/131557f9de7d571f118f59805df852dc
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10182
https://www.dlink.com.br/produto/dir-610/
https://gist.github.com/GouveaHeitor/131557f9de7d571f118f59805df852dc
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10182
https://www.dlink.com.br/produto/dir-610/
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-9377

Products affected by CVE-2020-9377

Dlink » Dir-610 » Version: N/A

cpe:2.3:h:dlink:dir-610:-
Dlink » Dir-610 Firmware » Version: N/A

cpe:2.3:o:dlink:dir-610_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9377

Products

Pricing

Contact Us