VDB

CVE-2015-2049

CVE-2015-2049 PUBLISHED CVSS 9 CRITICAL

Unrestricted file upload vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension.

EPSS 84.53% · 99.3th percentile

Risk Scores

CVSS 2.0
9
EPSS Score
84.53%
99.3th percentile

Affected Products

VendorProductVersions
dlinkdcs-931l_firmware0
n/an/a*

Timeline

  • Feb 23, 2015 CVE Published
  • Jan 7, 2016 PoC Published
  • Jan 7, 2016 PoC Published
  • May 29, 2018 PoC Published
  • Feb 4, 2022 EPSS Score
  • May 20, 2022 EPSS Score
  • Jul 12, 2022 EPSS Score
  • Oct 26, 2022 EPSS Score
  • Dec 18, 2022 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Mar 25, 2023 EPSS Score
  • Apr 27, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›