CVE-2024-48633

Name of the Vulnerable Software and Affected Versions D-Link DIR-878 version DIR 878 FW130B08 D-Link DIR-882 version DIR 882 FW130B06

Description The issue exists due to the lack of neutralization of special elements used in the operating system command in the SetVirtualServerSettings() function of the prog.cgi script in the D-Link DIR-878 and DIR-882 router firmware. This allows a remote attacker to execute arbitrary commands by sending a specially crafted POST request. The vulnerability is exploited via the ExternalPort, InternalPort, ProtocolNumber, and LocalIPAddress parameters in the SetVirtualServerSettings function.

Recommendations For D-Link DIR-878 version DIR 878 FW130B08, consider disabling the SetVirtualServerSettings() function until a patch is available to prevent exploitation. For D-Link DIR-882 version DIR 882 FW130B06, restrict access to the prog.cgi script to minimize the risk of exploitation, especially for the ExternalPort, InternalPort, ProtocolNumber, and LocalIPAddress parameters.