CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-9377

D-Link DIR-610 devices allow Remote Command Execution via the cmd parameter to command.php. NOTE: This vulnerability only affects products that are no longer supported by the maintainer

Exploit prediction scoring system (EPSS) score

EPSS Score 0.784

EPSS Ranking 99.0%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.5

Proposed Action

D-Link DIR-610 devices allow remote code execution via the cmd parameter to command.php.

Ransomware Campaign

Unknown

References

https://gist.github.com/GouveaHeitor/131557f9de7d571f118f59805df852dc
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10182
https://www.dlink.com.br/produto/dir-610/
https://gist.github.com/GouveaHeitor/131557f9de7d571f118f59805df852dc
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10182
https://www.dlink.com.br/produto/dir-610/

Products affected by CVE-2020-9377

Dlink » Dir-610 » Version: N/A

cpe:2.3:h:dlink:dir-610:-
Dlink » Dir-610 Firmware » Version: N/A

cpe:2.3:o:dlink:dir-610_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9377

Products

Pricing

Contact Us