CVE-2015-2051 — D-Link DIR-645 Router Remote Code Execution Vulnerability
2022-02-10 • CISA Known Exploited Vulnerability
[event] D-Link DIR-645 Wired/Wireless Router allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface.
> AFFECTED SOFTWARE
| Field | Value |
|---|---|
| Vendor | D-Link |
| Product | DIR-645 Router |
| CWE | CWE-77 |
| CVE ID | CVE-2015-2051 |
| Date Added | 2022-02-10 |
| Due Date | 2022-08-10 |
| Ransomware Campaign | Unknown |
> MITIGATION
The impacted product is end-of-life and should be disconnected if still in use.
Due Date: 2022-08-10