CVE-2022-42156

D-Link COVR 1200,1203 v1.08 was discovered to contain a command injection vulnerability via the tomography_ping_number parameter at function SetNetworkTomographySettings.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:dlink:covr_1203_firmware:1.08:*:*:*:*:*:*:*
cpe:2.3:h:dlink:covr_1203:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:dlink:covr_1202_firmware:1.08:*:*:*:*:*:*:*
cpe:2.3:h:dlink:covr_1202:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:dlink:covr_1200_firmware:1.08:*:*:*:*:*:*:*
cpe:2.3:h:dlink:covr_1200:-:*:*:*:*:*:*:*

Information

Published : 2022-10-13 12:15

Updated : 2022-10-18 05:22


NVD link : CVE-2022-42156

Mitre link : CVE-2022-42156


JSON object : View

CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')

Advertisement

dedicated server usa

Products Affected

dlink

  • covr_1203_firmware
  • covr_1203
  • covr_1200
  • covr_1202
  • covr_1200_firmware
  • covr_1202_firmware