CVE-2021-28144

Name of the Vulnerable Software and Affected Versions: D-Link DIR-3060 versions prior to 1.11b04 HF2

Description: The issue allows remote authenticated users to inject arbitrary commands in an admin or root context. This is because SetVirtualServerSettings calls CheckArpTables, which calls popen unsafely. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations: For D-Link DIR-3060 versions prior to 1.11b04 HF2, update to version 1.11b04 HF2 or later to resolve the issue. As a temporary workaround, consider restricting access to the prog.cgi interface until a patch is applied. Avoid using the SetVirtualServerSettings function, which calls CheckArpTables, until the issue is resolved.