CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-7436

A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07. This issue affects the function msp_info_htm of the file msp_info.htm. The manipulation of the argument cmd leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-273521 was assigned to this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.016

EPSS Ranking 80.7%

CVSS Severity

CVSS v3 Score 6.3

CVSS v2 Score 6.5

References

https://github.com/aLtEr6/pdf/blob/main/2.pdf
https://vuldb.com/?ctiid.273521
https://vuldb.com/?id.273521
https://vuldb.com/?submit.370591

Products affected by CVE-2024-7436

Dlink » Di-8100 » Version: N/A

cpe:2.3:h:dlink:di-8100:-
Dlink » Di-8100 » Version: 16.07

cpe:2.3:h:dlink:di-8100:16.07
Dlink » Di-8100 » Version: a1

cpe:2.3:h:dlink:di-8100:a1
Dlink » Di-8100 Firmware » Version: 16.07

cpe:2.3:o:dlink:di-8100_firmware:16.07

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-7436

Products

Pricing

Contact Us