CVE-2019-17621 - OpenCVE

The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attacker to execute system commands as root, by sending a specially crafted HTTP SUBSCRIBE request to the UPnP service when connecting to the local network.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Dlink	Dir-885r Dir-895r Firmware Dir-895l Firmware Dir-885r Firmware Dir-895l Dir-880l Dir-890r Dir-895r Dir-868l Dir-823 Firmware Dir-885l Dir-890l Dir-822 Firmware Dir-859 Firmware Dir-880l Firmware Dir-859 Dir-818lx Firmware Dir-818lx Dir-868l Firmware Dir-890l Firmware Dir-869 Dir-822 Dir-869 Firmware Dir-885l Firmware Dir-865l Firmware Dir-890r Firmware Dir-865l Dir-823

Configuration 1 [-]

AND

OR	cpe:2.3:o:dlink:dir-859_firmware::::::::
	cpe:2.3:o:dlink:dir-859_firmware:1.06b01:beta1::::::

cpe:2.3:h:dlink:dir-859:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:dlink:dir-822_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-822:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:dlink:dir-822_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-822:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

OR	cpe:2.3:o:dlink:dir-823_firmware::::::::
	cpe:2.3:o:dlink:dir-823_firmware:1.00b06:beta::::::

cpe:2.3:h:dlink:dir-823:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:dlink:dir-865l_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-865l:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:dlink:dir-868l_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-868l:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:dlink:dir-868l_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-868l:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

OR	cpe:2.3:o:dlink:dir-869_firmware::::::::
	cpe:2.3:o:dlink:dir-869_firmware:1.03b02:beta02::::::

cpe:2.3:h:dlink:dir-869:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:dlink:dir-880l_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-880l:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

OR	cpe:2.3:o:dlink:dir-890l_firmware::::::::
	cpe:2.3:o:dlink:dir-890l_firmware:1.11b01:beta01::::::

cpe:2.3:h:dlink:dir-890l:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

OR	cpe:2.3:o:dlink:dir-890r_firmware::::::::
	cpe:2.3:o:dlink:dir-890r_firmware:1.11b01:beta01::::::

cpe:2.3:h:dlink:dir-890r:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:dlink:dir-885l_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-885l:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:dlink:dir-885r_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-885r:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:dlink:dir-895l_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-895l:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:dlink:dir-895r_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-895r:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:dlink:dir-818lx_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-818lx:-:*:*:*:*:*:*:*

References

Link	Resource
http://packetstormsecurity.com/files/156054/D-Link-DIR-859-Unauthenticated-Remote-Command-Execution.html	Exploit Third Party Advisory VDB Entry
https://medium.com/%40s1kr10s/d-link-dir-859-rce-unautenticated-cve-2019-17621-en-d94b47a15104	Exploit Third Party Advisory
https://medium.com/%40s1kr10s/d-link-dir-859-rce-unautenticated-cve-2019-17621-es-fad716629ff9	Broken Link
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10146	Patch Vendor Advisory
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10147	Patch Vendor Advisory
https://www.dlink.com/en/security-bulletin	Vendor Advisory
https://www.ftc.gov/system/files/documents/cases/dlink_proposed_order_and_judgment_7-2-19.pdf	Third Party Advisory US Government Resource