Dlink: >> Dch-M225 Firmware Security Vulnerabilities
D-Link DCH-M225 1.05b01 and earlier devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the spotifyConnect.php userName parameter.
CVSS Score
9.8
EPSS Score
0.102
Published
2020-02-21
D-Link DCH-M225 1.05b01 and earlier devices allow remote authenticated admins to execute arbitrary OS commands via shell metacharacters in the media renderer name.
CVSS Score
7.2
EPSS Score
0.021
Published
2020-02-21