Authenticated OS Command Injection Vulnerability in D-Link Wireless Access Point
CVE-2019-20500

7.8HIGH

Key Information:

Vendor: D-Link
Status: Dwl-2600ap Firmware
Vendor: CVE Published:; 5 March 2020

Badges

👾 Exploit Exists🟡 Public PoC🦅 CISA Reported

Summary

D-Link DWL-2600AP devices running firmware version 4.2.0.15 Rev A are susceptible to an authenticated OS command injection vulnerability. This flaw is present in the Save Configuration feature of the web interface, where improper handling of user input allows attackers to exploit shell metacharacters within the 'admin.cgi?action=config_save' parameters, such as 'configBackup' or 'downloadServerip'. Successful exploitation can lead to unauthorized access and manipulation of system commands.

CISA Reported

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace

The CISA's recommendation is: Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2019-20500 - Proof of Concept

References

https://supportannouncement.us.dlink.com/announcement/pub...

x_refsource_MISC

https://www.exploit-db.com/exploits/46841

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

👾
Exploit known to exist
Jun 29, 2023
🦅
CISA Reported
Jun 29, 2023
🟡
Public PoC available
Mar 5, 2020
Vulnerability published
Mar 5, 2020
Vulnerability Reserved
Mar 5, 2020