CyberSec.Space Logo
返回 CVE 浏览器

CVE-2015-1187

Known Exploited (CISA KEV)CRITICAL
9.8
CVSS Severity Score
EPSS Score70.7070%
EPSS Percentile95.15th
Published2017年9月21日
Last Modified2026年4月21日

Vulnerability Description

The ping tool in multiple D-Link and TRENDnet devices allow remote attackers to execute arbitrary code via the ping_addr parameter to ping.ccp.

Affected Platforms (CPE)

💻
Dlink

Dir 626l Firmware

= 1.04
💻
Dlink

Dir 636l Firmware

= 1.04
💻
Dlink

Dir 808l Firmware

= 1.03
💻
Dlink

Dir 810l Firmware

= 1.01
💻
Dlink

Dir 810l Firmware

= 2.02
💻
Dlink

Dir 820l Firmware

= 1.02
💻
Dlink

Dir 820l Firmware

= 1.05
💻
Dlink

Dir 820l Firmware

= 2.01
💻
Dlink

Dir 826l Firmware

= 1.00
💻
Dlink

Dir 830l Firmware

= 1.00
💻
Dlink

Dir 836l Firmware

= 1.01
💻
Trendnet

Tew 731br Firmware

= 2.01
💻
Dlink

Dir 651 Firmware

= 1.10na
💻
Trendnet

Tew 651br Firmware

All versions
💻
Trendnet

Tew 652br Firmware

All versions
💻
Trendnet

Tew 711br Firmware

= 1.00
💻
Trendnet

Tew 810dr Firmware

= 1.00
💻
Trendnet

Tew 813dru Firmware

= 1.00

References & Advisories

🔗 http://packetstormsecurity.com/files/130607/D-Link-DIR636L-Remote-Command-Injection.html
🔗 http://packetstormsecurity.com/files/131465/D-Link-TRENDnet-NCC-Service-Command-Injection.html
🔗 http://seclists.org/fulldisclosure/2015/Mar/15
🔗 http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10052
🔗 http://www.securityfocus.com/bid/72848
🔗 https://github.com/darkarnium/secpub/tree/master/Multivendor/ncc2
🔗 http://packetstormsecurity.com/files/130607/D-Link-DIR636L-Remote-Command-Injection.html
🔗 http://packetstormsecurity.com/files/131465/D-Link-TRENDnet-NCC-Service-Command-Injection.html

相关漏洞威胁

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...

CVE-2026-121886.3

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules...