• August 10, 2022, 07:27:07 PM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: DNS-320 (RevA) - Command Injection Vulnerability  (Read 640 times)

GreenBay42

  • Administrator
  • Level 11 Member
  • *
  • Posts: 2752
DNS-320 (RevA) - Command Injection Vulnerability
« on: May 05, 2022, 06:14:52 AM »

Official Announcement - https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10183

On July 7, 2020, D-Link was made aware of a Command Injection Vulnerability report by Swing of Chaitin Security Research Lab affecting the D-Link Network Attached Storage (NAS): DNS-320 Revision Ax. This disclosures is referenced as CVE-2020-25506

All US consumers using the DNS-320 hardware revision Ax, are recommended to immediately retire and replace the device.
Logged