CVE-2019-12786 (dir-818lw_firmware)

An issue was discovered on D-Link DIR-818LW devices from 2.05.B03 to 2.06B01 BETA. There is a command injection in HNAP1 SetWanSettings via an XML injection of the value of the IPAddress key.
Source: NIST
CVE-2019-12786 (dir-818lw_firmware)