CVE-2019-12767
CRITICALD-Link DAP-1650 Firmware < 1.04b02_j65h - OS Command Injection
Title source: llmDescription
An issue was discovered on D-Link DAP-1650 devices before 1.04B02_J65H Hot Fix. Attackers can execute arbitrary commands.
References (1)
Core 1
Core References
Release Notes, Vendor Advisory x_refsource_confirm
ftp://ftp2.dlink.com/SECURITY_ADVISEMENTS/DAP-1650/REVA/DAP-1650_REVA_RELEASE_NOTES_v1.04B02_J65H.pdf
Scores
CVSS v3
9.8
EPSS
0.0094
EPSS Percentile
76.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-78
Status
published
Products (1)
dlink/dap-1650_firmware
< 1.04b02_j65h
Published
Mar 21, 2020
Tracked Since
Feb 18, 2026