CVE-2024-11065

Published Nov 11, 2024

Last updated 2 days ago

CVSS high 7.2

Overview

Description
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet.
Source
twcert@cert.org.tw
NVD status
Analyzed
CNA Tags
unsupported-when-assigned

Risk scores

CVSS 3.1

Type
Primary
Base score
7.2
Impact score
5.9
Exploitability score
1.2
Vector string
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

twcert@cert.org.tw
CWE-78

Social media

Hype score
Not currently trending

  1. 🚨 CVE-2024-11065 (Published: 2024-11-11) - A high-severity vulnerability affecting D-Link TVN-202411010. Ensure your systems are updated to the latest version to mitigate risks. For detailed remediation steps, visit: https://t.co/RRy8YyS77w #CyberSecurity #DLink #CVE

    @transilienceai

    15 Nov 2024

    4 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 🚨 CVE-2024-11065 (Published: 2024-11-11) - High severity vulnerability in D-Link TVN-202411010. Affected versions are at risk! 🛡️ Ensure you update to the latest firmware to mitigate potential exploits. For more details, check the advisory: https://t.co/RRy8YyS77w #CyberSecurit

    @transilienceai

    15 Nov 2024

    3 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. CVE-2024-11065 The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system co… https://t.co/17sqWEayDH

    @CVEnew

    11 Nov 2024

    441 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

References