Tim Carrington

Name of the Vulnerable Software and Affected Versions: D-Link DCS-5009 versions 1.08.11 and earlier D-Link DCS-5010 versions 1.14.09 and earlier D-Link DCS-5020L versions prior to 1.15.01 Description: The issue allows remote authenticated attackers to execute code through command injection in the `alphapd` binary, which is responsible for running the camera's web server. This is achieved by passing sanitized `/setSystemAdmin` user input in the `AdminID` field directly to a call to `system()`. Recommendations: For D-Link DCS-5009 versions 1.08.11 and earlier, update to a version later than 1.08.11. For D-Link DCS-5010 versions 1.14.09 and earlier, update to a version later than 1.14.09. For D-Link DCS-5020L versions prior to 1.15.01, update to version 1.15.01 or later.

Name of the Vulnerable Software and Affected Versions: Tenda AC15 version 15.03.1.16 multi Description: A remote, unauthenticated attacker can gain remote code execution on the device by crafting a `password` parameter for the COOKIE header. Recommendations: For Tenda AC15 version 15.03.1.16 multi, avoid using the `password` parameter in the COOKIE header until a fix is available. As a temporary workaround, consider restricting access to the device to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.