cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-6842,https://securityvulnerability.io/vulnerability/CVE-2020-6842,Remote Command Execution Vulnerability in D-Link Media Renderer Devices,"A remote command execution vulnerability affects D-Link DCH-M225 devices running version 1.05b01 and earlier. This flaw allows authenticated administrators to execute arbitrary operating system commands by utilizing shell metacharacters in the media renderer name. When exploited, this vulnerability can lead to unauthorized control over the affected devices, making it crucial for users to apply security patches and updates provided by D-Link.",D-Link,Dch-m225 Firmware,7.2,HIGH,0.0015300000086426735,false,,false,false,false,,,false,false,,2020-02-21T15:55:49.000Z,0
CVE-2020-6841,https://securityvulnerability.io/vulnerability/CVE-2020-6841,Remote Code Execution Vulnerability in D-Link DCH-M225 Devices,"The D-Link DCH-M225 device, running version 1.05b01 and earlier, is susceptible to a vulnerability that enables remote attackers to execute arbitrary operating system commands. This occurs through the manipulation of shell metacharacters within the 'userName' parameter of the spotifyConnect.php script. When exploited, this security flaw could potentially allow unauthorized individuals to gain control over the system, posing significant risks to the integrity of the device and the network it operates within.",D-Link,Dch-m225 Firmware,9.8,CRITICAL,0.028620000928640366,false,,false,false,false,,,false,false,,2020-02-21T15:35:04.000Z,0