CVE-2015-1187
CRITICAL9.8CVSS v3
10.0CVSS v2
82.89%
EPSS (exploit probability)
CWE-287CWE
Description
The ping tool in multiple D-Link and TRENDnet devices allow remote attackers to execute arbitrary code via the ping_addr parameter to ping.ccp.
CVSS v3 vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected routers (2)
| Vendor | Model | Matched via | Affected versions | Fixed in | Patch Status |
|---|---|---|---|---|---|
| TRENDnet | TRENDnet TEW-651BR | — |
— | — | Unpatched |
| TRENDnet | TRENDnet TEW-731BR | — |
— | — | Unpatched |