The D-Link DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface.
https://blog.xlab.qianxin.com/catddos-derivative-en/
https://www.hivepro.com/threat-digest/attacks-vulnerabilities-and-actors-29-april-to-5-may-2024/
https://www.hivepro.com/threat-advisory/goldoon-botnet-exploits-longstanding-d-link-vulnerability/
https://www.fortinet.com/blog/threat-research/new-goldoon-botnet-targeting-d-link-devices
https://www.exploit-db.com/exploits/37171/