CVE-2019-6014
HIGH WAF: High
CVSS 8.8
Published: 2019-12-26
CWE-78
DBA-1510P firmware 1.70b009 and earlier allows an attacker to execute arbitrary OS commands via Web User Interface.
WAF Coverage Analysis
OS Command Injection
High WAF Coverage
OWASP: A03:2021 Injection
932xxx - Remote Code Execution
Affected Software
| Vendor | Product | Version |
|---|---|---|
| dlink | dba-1510p_firmware | up to 1.70b009 |
References
- jvn.jp (Third Party Advisory)
- www.dlink-jp.com (Vendor Advisory)