CVE-2018-17786

Publication date

2018-10-02 18:00:00

Family

mitre

State

PUBLISHED

Description

On D-Link DIR-823G devices, ExportSettings.sh, upload_settings.cgi, GetDownLoadSyslog.sh, and upload_firmware.cgi do not require authentication, which allows remote attackers to execute arbitrary code.