Remote Command Execution Vulnerability in D-Link DIR-859 Routers
CVE-2019-20217

9.8CRITICAL

Key Information:

Vendor
D-Link
Status
Dir-859 Firmware
Vendor
CVE Published:
29 January 2020

Summary

D-Link DIR-859 routers running firmware versions 1.05 and 1.06B01 Beta01 are susceptible to a remote command execution vulnerability. This issue arises from improper handling of the SERVER_ID value in the M-SEARCH method within the SSDP CGI component. Malicious attackers can exploit this vulnerability by sending specially crafted requests to the device, allowing them to execute arbitrary OS commands by concatenating them using shell metacharacters. As a result, unauthorized access and manipulation of the device's operating system may occur, posing significant risks to network integrity.

References

https://supportannouncement.us.dlink.com/announcement/pub...
x_refsource_CONFIRM
https://medium.com/%40s1kr10s/d-link-dir-859-rce-unauthen...
x_refsource_MISC
https://medium.com/%40s1kr10s/d-link-dir-859-rce-unauthen...
x_refsource_MISC

EPSS Score

5% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.