8 High
AI Score
Confidence
Low
0.014 Low
EPSS
Percentile
86.5%
D-Link DSL-2750B devices before 1.05 allow remote unauthenticated command injection via the login.cgi cli parameter, as exploited in the wild in 2016 through 2022.
seclists.org/fulldisclosure/2016/Feb/53
supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10088
www.exploit-db.com/exploits/44760