D-Link Go-RT-AC750 revA_v101b03 was discovered to contain a command injection vulnerability via the service parameter at hedwig.cgi.
The vulnerability is located in a CGI script named hedwig.cgi, which processes HTTP requests without proper validation of the 'service' parameter. An attacker can place malicious system commands in this parameter, which will be executed by the device with the privileges of the process handling the request. The attack does not require authentication or user interaction, and can be executed remotely over the network.
An attacker can gain full control over the device by executing arbitrary system commands — leading to violations of confidentiality, integrity, and system availability. Possible consequences include device takeover, network configuration changes, and using the router as an entry point to the local network (lateral movement).
Patches available from the manufacturer should be applied according to references. If an update is not available, it is recommended to restrict access to the device's administrative interface exclusively to trusted local networks and disable access to the management panel from the WAN network.
D-Link Go-RT-AC750 revA_v101b03 (firmware)
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HDlink Go Rt Ac750
HWDlinkrevision_aDlink Go Rt Ac750 Firmware
OSDlink101b03
Related vulnerabilities
D-Link Go-RT-AC750 GORTAC750_revA_v101b03 and GO-RT-AC750_revB_FWv200b02 are vulnerable to Buffer Overflow via...
Stack-based buffer overflow w D-Link Go-RT-AC750 via funkcja hnap_main
D-Link Go-RT-AC750: hardcoded hasło umożliwia zdalny dostęp root przez telnet
Stack-based buffer overflow w D-Link Go-RT-AC750 — aktywacja usługi telnet
Stack overflow w D-LINK Go-RT-AC750 — funkcja sprintf w cgibin