Vulnerabilities > CVE-2022-29778 - Unspecified vulnerability in Dlink Dir-890L Firmware

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
dlink
NVD
Published: 2022-06-03
Updated: 2024-10-28

Summary

D-Link DIR-890L 1.20b01 allows attackers to execute arbitrary code due to the hardcoded option Wake-On-Lan for the parameter 'descriptor' at SetVirtualServerSettings.php

Vulnerable Configurations

Part Description Count
OS
Dlink
7
Hardware
Dlink
1

References