CVE-2021-46319

Remote Code Execution (RCE) vulnerability exists in D-Link Router DIR-846 DIR846A1_FW100A43.bin and DIR846enFW100A53DLA-Retail.bin. Malicious users can use this vulnerability to use " " or backticks to bypass the shell metacharacters in the ssid0 or ssid1 parameters to execute arbitrary commands.This vulnerability is due to the fact that CVE-2019-17509 is not fully patched and can be bypassed by using line breaks or backticks on its basis.
Configurations

Configuration 1


Information

Published : 2022-02-17 10:15

Updated : 2022-02-25 06:50


NVD link : CVE-2021-46319

Mitre link : CVE-2021-46319

Products Affected
CWE