← ExploitWatch
HomeExploited Vulnerabilities

CVE-2020-9377 — Actively Exploited: DIR-610 Devices (D-Link)

D-Link DIR-610 devices allow remote code execution via the cmd parameter to command.php.

CVE IDCVE-2020-9377
VendorD-Link
ProductDIR-610 Devices
Vulnerability nameD-Link DIR-610 Devices Remote Command Execution
Date added2022-03-25
Remediation due2022-04-15
Known ransomware useUnknown
Required actionThe impacted product is end-of-life and should be disconnected if still in use.
DescriptionD-Link DIR-610 devices allow remote code execution via the cmd parameter to command.php.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →