CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-42784

OS Command Injection vulnerability in debug_fcgi of D-Link DWR-932C E1 firmware allows a remote attacker to perform command injection via a crafted HTTP request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.039

EPSS Ranking 87.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10246
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10246

Products affected by CVE-2021-42784

Dlink » Dwr-932c » Version: revision_e

cpe:2.3:h:dlink:dwr-932c:revision_e
Dlink » Dwr-932c E1 Firmware » Version: Any

cpe:2.3:o:dlink:dwr-932c_e1_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-42784

Products

Pricing

Contact Us