logo
Vulnerability feed
Contributors
About
Blog
CONTRIBUTE

Vulnerability

warn

CVE-2018-10823

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2018-10823

Description:
An issue was discovered on D-Link DWR-116 through 1.06, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. An authenticated attacker may execute arbitrary code by injecting the shell command into the chkisg.htm page Sip parameter. This allows for full control over the device internals.
Last updated date:
04/26/2023

Reports

alt

ACTIVELY EXPLOITED

Type:
exploitation
Confidence:
HIGH
Date of publishing:
10/19/2018
Reference url to background

https://digital.nhs.uk/cyber-alerts/2018/cc-273819

Type:
exploitation
Confidence:
HIGH
Date of publishing:
04/17/2022
Reference url to background

https://securityaffairs.co/wordpress/130291/cyber-crime/enemybot-botnet-ddos.html

Type:
exploitation
Confidence:
HIGH
Date of publishing:
05/26/2022
Reference url to background

https://cybersecurity.att.com/blogs/labs-research/rapidly-evolving-iot-malware-enemybot-now-targeting-content-management-system-servers

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/03/2019
Reference url to background

http://sploit.tech/2018/10/12/D-Link.html

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/03/2019
Reference url to background

https://seclists.org/fulldisclosure/2018/Oct/36

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2023

Privacy Policy