Vulnerability Description
Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. The issue occurs when the attacker sends an arbitrary input to a "PingTest" device common gateway interface that could lead to common injection. An attacker who successfully triggers the command injection could achieve full system compromise. Later, it was independently found that these are also affected: DIR-855L, DAP-1533, DIR-862L, DIR-615, DIR-835, and DIR-825.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dlink | Dir-655 Firmware | <= 3.02b05 |
| Dlink | Dir-655 | cx |
| Dlink | Dir-866L Firmware | <= 1.03b04 |
| Dlink | Dir-866L | ax |
| Dlink | Dir-652 Firmware | - |
| Dlink | Dir-652 | ax |
| Dlink | Dhp-1565 Firmware | <= 1.01 |
| Dlink | Dhp-1565 | ax |
| Dlink | Dir-855L Firmware | - |
| Dlink | Dir-855L | - |
| Dlink | Dap-1533 Firmware | - |
| Dlink | Dap-1533 | - |
| Dlink | Dir-862L Firmware | - |
| Dlink | Dir-862L | - |
| Dlink | Dir-615 Firmware | - |
| Dlink | Dir-615 | - |
| Dlink | Dir-835 Firmware | - |
| Dlink | Dir-835 | - |
| Dlink | Dir-825 Firmware | - |
| Dlink | Dir-825 | - |
Related Weaknesses (CWE)
References
- https://fortiguard.com/zeroday/FG-VD-19-117Broken LinkThird Party Advisory
- https://medium.com/%4080vul/determine-the-device-model-affected-by-cve-2019-1692ExploitThird Party Advisory
- https://www.kb.cert.org/vuls/id/766427Third Party AdvisoryUS Government Resource
- https://www.seebug.org/vuldb/ssvid-98079ExploitThird Party Advisory
- https://fortiguard.com/zeroday/FG-VD-19-117Broken LinkThird Party Advisory
- https://medium.com/%4080vul/determine-the-device-model-affected-by-cve-2019-1692ExploitThird Party Advisory
- https://www.kb.cert.org/vuls/id/766427Third Party AdvisoryUS Government Resource
- https://www.seebug.org/vuldb/ssvid-98079ExploitThird Party Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-US Government Resource
FAQ
What is CVE-2019-16920?
CVE-2019-16920 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. The issue occurs when the attacker sends an arbitrary input to a "PingTest" device co...
How severe is CVE-2019-16920?
CVE-2019-16920 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2019-16920?
Check the references section above for vendor advisories and patch information. Affected products include: Dlink Dir-655 Firmware, Dlink Dir-655, Dlink Dir-866L Firmware, Dlink Dir-866L, Dlink Dir-652 Firmware.