CVE-2020-25368
D-Link DIR-823G Command Injection via HNAP1 Protocol
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
A command injection vulnerability exists in the HNAP1 protocol of D-Link DIR-823G devices. Attackers can exploit this flaw via the login function to execute arbitrary commands by sending specially crafted requests over the network. This could lead to a compromise of the device's confidentiality, integrity, and availabi