Command Injection Vulnerability in D-Link DIR882 Router Allows Privilege Escalation

Command Injection Vulnerability in D-Link DIR882 Router Allows Privilege Escalation

CVE-2022-28895 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A command injection vulnerability in the component /setnetworksettings/IPAddress of D-Link DIR882 DIR882A1_FW130B06 allows attackers to escalate privileges to root via a crafted payload.

Learn more about our Network Penetration Testing.