Wangjincheng

**Name of the Vulnerable Software and Affected Versions** Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers (affected versions not specified) **Description** A vulnerability in the web-based management interface of the affected devices could allow an unauthenticated, remote attacker to upload arbitrary files to an affected device. This is due to insufficient authorization enforcement mechanisms in the context of file uploads. An attacker could exploit this by sending a crafted HTTP request to an affected device, potentially allowing the upload of arbitrary files. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** WAVLINK WL-WN575A3 version RPT75A3.V4300.201217 **Description** A command injection issue was found in the adm.cgi file, allowing attackers to execute arbitrary commands via the `username` parameter. **Recommendations** For WAVLINK WL-WN575A3 version RPT75A3.V4300.201217, as a temporary workaround, consider restricting access to the adm.cgi file until a patch is available. Avoid using the `username` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-645 version 1.03 **Description** The issue is related to a command injection vulnerability in the ajax explorer.sgi file of the D-Link DIR-645 router's firmware. This vulnerability arises from the failure to neutralize special elements used in the operating system command when processing the `QUERY STRING` parameter. Exploitation of this issue may allow an attacker to execute arbitrary commands. **Recommendations** For D-Link DIR-645 version 1.03, consider restricting access to the ` ajax explorer.sgi` file until a patch is available. As a temporary workaround, avoid using the `QUERY STRING` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.