CVE-2021-3707

MEDIUM

D-Link router DSL-2750U <vME1.16 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-3707. PoCs published by HadiMed.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2021-3707, targeting D-Link DSL-2750U routers. The exploit chain involves overwriting the router's configuration via TFTP to bypass authentication, then leveraging a command injection vulnerability in the 'webupg' CGI binary to execute arbitrary commands as root.

Description

D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to unauthorized configuration modification. An unauthenticated attacker on the local network may exploit this, with CVE-2021-3708, to execute any OS commands on the vulnerable device.

Exploits (1)

nomisec WORKING POC 21 stars
by HadiMed · poc
https://github.com/HadiMed/DSL-2750U-Full-chain

This repository contains a functional exploit for CVE-2021-3707, targeting D-Link DSL-2750U routers. The exploit chain involves overwriting the router's configuration via TFTP to bypass authentication, then leveraging a command injection vulnerability in the 'webupg' CGI binary to execute arbitrary commands as root.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: D-Link DSL-2750U firmware version ME_1.16 (GAN9.ET235B-B-DL-DSL2750U-R5B028-ME.EN_2T2R)
No auth needed
Prerequisites: Network access to the target router · TFTP access to port 69/UDP · HTTP access to the web interface
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 5.5
EPSS 0.0154
EPSS Percentile 71.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-15
Status published
Products (1)
dlink/dsl-2750u_firmware < 1.16
Published Aug 16, 2021
Tracked Since Feb 18, 2026