CVE-2015-2049

Published: Feb 23, 2015Modified: May 6, 2026

9.0

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Exploitability: 8.0 / Impact: 10.0

Source: NVD

Description

Unrestricted file upload vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension.

Affected (1)

Products: Dlink: Dcs 931l Firmware

Dlink

1 product

Dcs 931l Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dcs 931l Firmware	Up to 1.04

Running on/with	Platform Versions
Dlink Dcs 931l	All versions

References (6)

http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10049

Source: cve@mitre.org

Vendor Advisory

http://www.kb.cert.org/vuls/id/377348

Source: cve@mitre.org

Third Party AdvisoryUS Government Resource

https://www.exploit-db.com/exploits/39192/

Source: cve@mitre.org

http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10049

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.kb.cert.org/vuls/id/377348

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

https://www.exploit-db.com/exploits/39192/

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.