CVE-2021-3707

D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to unauthorized configuration modification. An unauthenticated attacker on the local network may exploit this, with CVE-2021-3708, to execute any OS commands on the vulnerable device.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:dlink:dsl-2750u_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dsl-2750u:-:*:*:*:*:*:*:*

History

21 Nov 2024, 06:22

Type Values Removed Values Added
References () https://github.com/HadiMed/firmware-analysis/blob/main/DSL-2750U%20%28firmware%20version%201.6%29/README.md - () https://github.com/HadiMed/firmware-analysis/blob/main/DSL-2750U%20%28firmware%20version%201.6%29/README.md -
References () https://jvn.jp/en/vu/JVNVU92088210/ - Third Party Advisory () https://jvn.jp/en/vu/JVNVU92088210/ - Third Party Advisory
References () https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10230 - Vendor Advisory () https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10230 - Vendor Advisory

07 Nov 2023, 03:38

Type Values Removed Values Added
References
  • {'url': 'https://github.com/HadiMed/firmware-analysis/blob/main/DSL-2750U%20(firmware%20version%201.6)/README.md', 'name': 'https://github.com/HadiMed/firmware-analysis/blob/main/DSL-2750U%20(firmware%20version%201.6)/README.md', 'tags': ['Third Party Advisory'], 'refsource': 'MISC'}
  • () https://github.com/HadiMed/firmware-analysis/blob/main/DSL-2750U%20%28firmware%20version%201.6%29/README.md -

Information

Published : 2021-08-16 05:15

Updated : 2024-11-21 06:22


NVD link : CVE-2021-3707

Mitre link : CVE-2021-3707

CVE.ORG link : CVE-2021-3707


JSON object : View

Products Affected

dlink

  • dsl-2750u_firmware
  • dsl-2750u
CWE
CWE-15

External Control of System or Configuration Setting

NVD-CWE-Other