← back
CVE-2020-15893observed exploitation

CVE-2020-15893

45Vexday Risk Score

Patch now. It exploitation observed by VulnCheck and has a working public exploit.

ssvc Actepss 21%
from disclosure to weapon0 days
Published on NVDJul 22
metasploitFeb 1
VulnCheck+107d
exploitation probability
21%top 3% of all CVEs
observed exploitation
yesVulnCheck
An issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02. Universal Plug and Play (UPnP) is enabled by default on port 1900. An attacker can perform command injection by injecting a payload into the Search Target (ST) field of the SSDP M-SEARCH discover packet.
Affected products
n/a · n/a