CRITICAL🚩 CISA KEV⚡ EXPLOIT🇵🇱 Wersja polska

CVE-2019-17621

CVSS 9.8v3.1pub. 2019-12-30upd. 2025-11-07

The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attacker to execute system commands as root, by sending a specially crafted HTTP SUBSCRIBE request to the UPnP service when connecting to the local network.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dlink Dir 818lx

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 818lx Firmware

    OS
    Dlink
    wszystkie wersje
  • Dlink Dir 822

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 822 Firmware

    OS
    Dlink
    ≤ 2.03b01≤ 3.12b04
  • Dlink Dir 823

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 823 Firmware

    OS
    Dlink
    1.00b06≤ 1.00b06
  • Dlink Dir 859

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 859 Firmware

    OS
    Dlink
    1.06b01≤ 1.05b03
  • Dlink Dir 865l

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 865l Firmware

    OS
    Dlink
    ≤ 1.07b01
  • Dlink Dir 868l

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 868l Firmware

    OS
    Dlink
    ≤ 1.12b04≤ 2.05b02
  • Dlink Dir 869

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 869 Firmware

    OS
    Dlink
    1.03b02≤ 1.03b02
  • Dlink Dir 880l

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 880l Firmware

    OS
    Dlink
    ≤ 1.08b04
  • Dlink Dir 885l

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 885l Firmware

    OS
    Dlink
    ≤ 1.12b05
  • Dlink Dir 885r

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 885r Firmware

    OS
    Dlink
    ≤ 1.12b05
  • Dlink Dir 890l

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 890l Firmware

    OS
    Dlink
    1.11b01≤ 1.11b01
  • Dlink Dir 890r

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 890r Firmware

    OS
    Dlink
    1.11b01≤ 1.11b01
  • Dlink Dir 895l

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 895l Firmware

    OS
    Dlink
    ≤ 1.12b10
  • Dlink Dir 895r

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 895r Firmware

    OS
    Dlink
    ≤ 1.12b10

CISA KEV — detailsi

Vendori
D-Link
Producti
DIR-859 Router
Added to KEVi
June 29, 2023
Remediation deadline (US Federal)i
July 20, 2023(overdue)
Required action (CISA)i

Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.

CISA descriptioni

D-Link DIR-859 router contains a command execution vulnerability in the UPnP endpoint URL, /gena.cgi. Exploitation allows an unauthenticated remote attacker to execute system commands as root by sending a specially crafted HTTP SUBSCRIBE request to the UPnP service when connecting to the local network.

🔴
IMMEDIATE ACTION
Actively exploited in the wild (CISA KEV). Patch immediately.
CISA DEADLINE: 20 lipca 2023
Tags
Command Injection
CWE
References

Related vulnerabilities

CVE-2018-6530CRITICAL9.8⚠ KEVten sam produkt

OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMW...

CVE-2025-55583CRITICAL9.8PL ✓ten sam produkt

D-Link DIR-868L — nieuwierzytelniony command injection w fileaccess.cgi

CVE-2023-51984CRITICAL9.8PL ✓ten sam produkt

Command injection w D-Link DIR-822+ — zdalne wykonanie poleceń

CVE-2023-51987CRITICAL9.8PL ✓ten sam produkt

D-Link DIR-822+: Login bypass w interfejsie HNAP1 — puste hasło admina

CVE-2023-39668CRITICAL9.8ten sam produkt

D-Link DIR-868L fw_revA_1-12_eu_multi_20170316 was discovered to contain a buffer overflow via the param_2 par...