CVE-2021-3707

D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to unauthorized configuration modification. An unauthenticated attacker on the local network may exploit this, with CVE-2021-3708, to execute any OS commands on the vulnerable device.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:dlink:dsl-2750u_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dsl-2750u:-:*:*:*:*:*:*:*

History

07 Nov 2023, 03:38

Type Values Removed Values Added
References
  • {'url': 'https://github.com/HadiMed/firmware-analysis/blob/main/DSL-2750U%20(firmware%20version%201.6)/README.md', 'name': 'https://github.com/HadiMed/firmware-analysis/blob/main/DSL-2750U%20(firmware%20version%201.6)/README.md', 'tags': ['Third Party Advisory'], 'refsource': 'MISC'}
  • () https://github.com/HadiMed/firmware-analysis/blob/main/DSL-2750U%20%28firmware%20version%201.6%29/README.md -

Information

Published : 2021-08-16 05:15

Updated : 2024-02-28 18:28


NVD link : CVE-2021-3707

Mitre link : CVE-2021-3707

CVE.ORG link : CVE-2021-3707


JSON object : View

Products Affected

dlink

  • dsl-2750u_firmware
  • dsl-2750u
CWE
NVD-CWE-Other CWE-15

External Control of System or Configuration Setting