Cybersecurity Alerts

D-Link DCS-930L Devices OS Command Injection Vulnerability

setSystemCommand on D-Link DCS-930L devices allows a remote attacker to execute code via an OS command.

Required Action

The impacted product is end-of-life and should be disconnected if still in use.

Weakness Classification

CWE-78

References

• https://nvd.nist.gov/vuln/detail/CVE-2016-11021