1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. D-Link DNS-320 Device Command Injection Vulnerability

Known Exploited Vulnerabilities CVE-2020-25506

D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the system_mgr.cgi component, which can lead to remote arbitrary code execution.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2020-25506 D-Link DNS-320 Device Command Injection Vulnerability secondary_impact T1584.005 Botnet
Comments
CVE-2020-25506 is a command injection vulnerability in the D-Link DNS-320 FW v2.06B01 Revision Ax system_mgr.cgi component, which can lead to remote arbitrary code execution.
References
  1. https://www.bleepingcomputer.com/news/security/mirai-ddos-malware-variant-expands-targets-with-13-router-exploits/
  2. https://thehackernews.com/2021/03/new-mirai-variant-and-zhtrap-botnet.html
CVE-2020-25506 D-Link DNS-320 Device Command Injection Vulnerability primary_impact T1059 Command and Scripting Interpreter
Comments
CVE-2020-25506 is a command injection vulnerability in the D-Link DNS-320 FW v2.06B01 Revision Ax system_mgr.cgi component, which can lead to remote arbitrary code execution.
References
  1. https://www.bleepingcomputer.com/news/security/mirai-ddos-malware-variant-expands-targets-with-13-router-exploits/
  2. https://thehackernews.com/2021/03/new-mirai-variant-and-zhtrap-botnet.html
CVE-2020-25506 D-Link DNS-320 Device Command Injection Vulnerability exploitation_technique T1133 External Remote Services
Comments
CVE-2020-25506 is a command injection vulnerability in the D-Link DNS-320 FW v2.06B01 Revision Ax system_mgr.cgi component, which can lead to remote arbitrary code execution.
References
  1. https://www.bleepingcomputer.com/news/security/mirai-ddos-malware-variant-expands-targets-with-13-router-exploits/
  2. https://thehackernews.com/2021/03/new-mirai-variant-and-zhtrap-botnet.html