Primary

Context

D-Link DIR-645 Command Injection Vulnerability

Vulnerability

A command injection vulnerability has been identified in the D-Link DIR-645 router, specifically in the 105B01 firmware version. The issue arises in the 'soapcgi_main' function of the '/soap.cgi' file, where improper handling of the 'service' argument allows for arbitrary command execution. This vulnerability can be exploited remotely and affects devices that are no longer supported by the manufacturer.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the affected device.

Reproduction

The vulnerability can be reproduced by sending a request to the '/soap.cgi' endpoint with a crafted 'service' parameter that exploits the command injection flaw. The injected command will be executed on the router's operating system.

Added: Sep 18, 2025, 9:23 PM

Updated: Sep 18, 2025, 9:23 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

9.1

remediation

0.0

relevance

0.5

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

9.1

remediation

0.0

relevance

0.5

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

D-Link DIR-645 Command Injection Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

D-Link DIR-645

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating