Overview
- Description
- The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet.
- Source
- twcert@cert.org.tw
- NVD status
- Analyzed
- CNA Tags
- unsupported-when-assigned
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.2
- Impact score
- 5.9
- Exploitability score
- 1.2
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
Weaknesses
- twcert@cert.org.tw
- CWE-78
Social media
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
1
CVE-2024-11063 (Published: 2024-11-11) reveals a high-severity vulnerability affecting multiple product versions. Users are urged to update to the latest patches immediately to mitigate risks. For detailed remediation steps, visit: https://t.co/ztToiCI0VB #CyberSecurity… https://
@transilienceai
15 Nov 2024
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2024-11063 (Published: 2024-11-11) affects multiple versions of a critical product. Users are urged to update to the latest version to mitigate vulnerabilities. For detailed remediation steps, visit: https://t.co/ztToiCI0VB. Stay secure! 🔒 #CyberSecurity #CVE
@transilienceai
15 Nov 2024
10 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2024-11063 (Published: 2024-11-11) affects D-Link TVN-202411008. Exploited versions are vulnerable to security risks. Ensure your systems are updated and patched to mitigate potential threats. For detailed remediation steps, visit: https://t.co/ztToiCI0VB #CyberSecurity… h
@transilienceai
15 Nov 2024
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-11063 OS Command Injection in D-Link DSL6740C via SSH and Telnet The D-Link DSL6740C modem has a security flaw that lets remote attackers with admin rights inject and run system commands. They can do thi... https://t.co/zzzkYcvDHN
@VulmonFeeds
11 Nov 2024
36 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-11063 The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system co… https://t.co/i4jKY8jkhr
@CVEnew
11 Nov 2024
456 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:dlink:dsl6740c_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "702B0914-7B3E-4797-9D28-C1C680EC6668"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:dlink:dsl6740c:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "04466F44-FDB1-4ABF-84F1-C88CC175BCB9"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]