CVE-2021-3707

Summary

D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to unauthorized configuration modification. An unauthenticated attacker on the local network may exploit this, with CVE-2021-3708, to execute any OS commands on the vulnerable device.

Affected Software

VendorProductVersion RangeStatus
D-LinkDSL-2750Ufirmware vME1.16 or prior versionsaffected

Weaknesses

  • CWE-15: CWE-15: External Control of System or Configuration Setting

ADP Enrichment

CVE Program Container

Additional References

References