cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-48107,https://securityvulnerability.io/vulnerability/CVE-2022-48107,Command Injection Vulnerability in D-Link Router Firmware,"The D-Link DIR-878 router firmware has been found to have a command injection vulnerability located in the /setnetworksettings/IPAddress component. This flaw allows attackers to execute unauthorized commands, potentially leading to a privilege escalation to root. By sending a specially crafted payload, attackers can manipulate the underlying system, posing significant security risks to the affected devices.",D-Link,Dir 878 Firmware,9.8,CRITICAL,0.006899999920278788,false,false,false,false,,false,false,2023-01-27T00:00:00.000Z,0
CVE-2022-48108,https://securityvulnerability.io/vulnerability/CVE-2022-48108,Command Injection Vulnerability in D-Link Router Firmware,"A command injection vulnerability has been identified in D-Link DIR-878 firmware version 1.30B08, specifically within the /SetNetworkSettings/SubnetMask component. This vulnerability allows remote attackers to execute arbitrary commands by supplying crafted input, potentially leading to escalation of privileges to the root level. Users are advised to review their router configurations and apply any available security patches to mitigate the risks associated with this vulnerability.",D-Link,Dir 878 Firmware,9.8,CRITICAL,0.006899999920278788,false,false,false,false,,false,false,2023-01-27T00:00:00.000Z,0