Remote Code Execution Vulnerability in D-Link DGS-1510-Series Switches

Remote Code Execution Vulnerability in D-Link DGS-1510-Series Switches

CVE-2018-7859 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

A security vulnerability in D-Link DGS-1510-series switches with firmware 1.20.011, 1.30.007, 1.31.B003 and older that may allow a remote attacker to inject malicious scripts in the device and execute commands via browser that is configuring the unit.

Learn more about our Web Application Penetration Testing UK.