CVE-2022-28932

Name of the Vulnerable Software and Affected Versions D-Link DSL-G2452DG version ME 2.00

Description The issue is related to insecure permissions in the implementation of the execute cmd.cgi script in the D-Link DSL-G2452DG router's firmware. This could allow an attacker to execute arbitrary commands due to improper permission handling.

Recommendations For D-Link DSL-G2452DG version ME 2.00, consider restricting access to the execute cmd.cgi script as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.