Back to CVE Browser

CVE-2021-20696

HIGH

8.8

CVSS Severity Score

EPSS Score0.1880%

EPSS Percentile29.57th

PublishedApr 26, 2021

Last ModifiedNov 21, 2024

Vulnerability Description

DAP-1880AC firmware version 1.21 and earlier allows a remote authenticated attacker to execute arbitrary OS commands by sending a specially crafted request to a specific CGI program.

Affected Platforms (CPE)

💻

Dlink

Dap 1880ac Firmware

<= 1.21

References & Advisories

🔗 https://jvn.jp/en/vu/JVNVU92898656/index.html

🔗 https://www.dlink-jp.com/support/release/jvnvu92898656_dap-1880ac.html

🔗 https://jvn.jp/en/vu/JVNVU92898656/index.html

🔗 https://www.dlink-jp.com/support/release/jvnvu92898656_dap-1880ac.html

Related Vulnerabilities

CVE-2021-206979.8

Missing authentication for critical function in DAP-1880AC firmware version 1.21 and earlier allows a remote attacker to login to ...

CVE-2021-206948.8

Improper access control vulnerability in DAP-1880AC firmware version 1.21 and earlier allows a remote authenticated attacker to by...

CVE-2021-206958.8

Improper following of a certificate's chain of trust vulnerability in DAP-1880AC firmware version 1.21 and earlier allows a remote...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...