Critical Vulnerability Information Vulnerability Overview Vendor: D-Link Affected Products: DIR-890 L 108b03 and DIR-806A1 100CNb11 Affected Firmware Versions: <=108B03 and <=100CNb11 Vulnerability Type: Command Injection Vulnerability Vulnerability Details Prerequisites: The attacker must be able to reasonably control specific fields through particular branches. Critical Code Snippet: Command Construction and Execution: The variable is used for command construction and is ultimately executed via the function. POC (Proof of Concept) Python Script: Exploits the UPnP service to open a telnet shell. Example Output: Impact Attackers can remotely execute arbitrary commands by crafting specific payloads, potentially leading to severe consequences.