CVE-2018-17990 (dsl-3782_firmware)

An issue was discovered on D-Link DSL-3782 devices with firmware 1.01. An OS command injection vulnerability in Acl.asp allows a remote authenticated attacker to execute arbitrary OS commands via the ScrIPaddrEndTXT parameter.
Source: NIST
CVE-2018-17990 (dsl-3782_firmware)