CyberSec.Space Logo
Back to CVE Browser

CVE-2015-1187

Known Exploited (CISA KEV)CRITICAL
9.8
CVSS Severity Score
EPSS Score70.7070%
EPSS Percentile95.15th
PublishedSep 21, 2017
Last ModifiedApr 21, 2026

Vulnerability Description

The ping tool in multiple D-Link and TRENDnet devices allow remote attackers to execute arbitrary code via the ping_addr parameter to ping.ccp.

Affected Platforms (CPE)

πŸ’»
Dlink

Dir 626l Firmware

= 1.04
πŸ’»
Dlink

Dir 636l Firmware

= 1.04
πŸ’»
Dlink

Dir 808l Firmware

= 1.03
πŸ’»
Dlink

Dir 810l Firmware

= 1.01
πŸ’»
Dlink

Dir 810l Firmware

= 2.02
πŸ’»
Dlink

Dir 820l Firmware

= 1.02
πŸ’»
Dlink

Dir 820l Firmware

= 1.05
πŸ’»
Dlink

Dir 820l Firmware

= 2.01
πŸ’»
Dlink

Dir 826l Firmware

= 1.00
πŸ’»
Dlink

Dir 830l Firmware

= 1.00
πŸ’»
Dlink

Dir 836l Firmware

= 1.01
πŸ’»
Trendnet

Tew 731br Firmware

= 2.01
πŸ’»
Dlink

Dir 651 Firmware

= 1.10na
πŸ’»
Trendnet

Tew 651br Firmware

All versions
πŸ’»
Trendnet

Tew 652br Firmware

All versions
πŸ’»
Trendnet

Tew 711br Firmware

= 1.00
πŸ’»
Trendnet

Tew 810dr Firmware

= 1.00
πŸ’»
Trendnet

Tew 813dru Firmware

= 1.00

References & Advisories

πŸ”— http://packetstormsecurity.com/files/130607/D-Link-DIR636L-Remote-Command-Injection.html
πŸ”— http://packetstormsecurity.com/files/131465/D-Link-TRENDnet-NCC-Service-Command-Injection.html
πŸ”— http://seclists.org/fulldisclosure/2015/Mar/15
πŸ”— http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10052
πŸ”— http://www.securityfocus.com/bid/72848
πŸ”— https://github.com/darkarnium/secpub/tree/master/Multivendor/ncc2
πŸ”— http://packetstormsecurity.com/files/130607/D-Link-DIR636L-Remote-Command-Injection.html
πŸ”— http://packetstormsecurity.com/files/131465/D-Link-TRENDnet-NCC-Service-Command-Injection.html

Related Vulnerabilities

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...

CVE-2026-121886.3

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules...