d-link Security Vulnerabilities

6 Vulnerabilities
Description

An information disclosure issue exist in D-LINK-DIR-615 B2 2.01mt. An attacker can obtain a user name and password by forging a post request to the / getcfg.php page

Impacted versions: -

Base Score: 0.0, Severity: NA, ID: CVE-2021-40654, Last Modified: 2021-09-24T21:15:00Z

References

Advisory

An informtion disclosure issue exists in D-LINK-DIR-605 B2 Firmware Version : 2.01MT. An attacker can obtain a user name and password by forging a post request to the / getcfg.php page

Impacted versions: -

Base Score: 0.0, Severity: NA, ID: CVE-2021-40655, Last Modified: 2021-09-24T21:15:00Z

References

Advisory

An issue was discovered in D-Link DIR816_A1_FW101CNB04 750m11ac wireless router via the HTTP request parameter in the handler function of /goform/form2userconfig.cgi route, which can construct the user name string to delete the user function.

Impacted versions: -

Base Score: 0.0, Severity: NA, ID: CVE-2021-39510, Last Modified: 2021-08-24T19:15:00Z

References

Advisory

There are multiple out-of-bounds vulnerabilities in some processes of D-Link AC2600(DIR-2640) 1.01B04. Ordinary permissions can be elevated to administrator permissions, resulting in local arbitrary code execution. An attacker can combine other vulnerabilities to further achieve the purpose of remote code execution.

Impacted versions: -

Base Score: 0.0, Severity: NA, ID: CVE-2021-34202, Last Modified: 2021-06-16T19:17:00Z

References

Advisory

D-Link COVR-2600R and COVR-3902 Kit before 1.01b05Beta01 use hardcoded credentials for telnet connection, which allows unauthenticated attackers to gain privileged access to the router, and to extract sensitive data or modify the configuration.

Impacted versions: -

Base Score: 0.0, Severity: NA, ID: CVE-2018-20432, Last Modified: 2020-09-14T14:27:00Z

References

Advisory

D-Link DIR865L v1.03 suffers from an "Unauthenticated Hardware Linking" vulnerability.

Impacted versions: -

Base Score: 0.0, Severity: NA, ID: CVE-2013-3096, Last Modified: 2020-02-07T19:19:00Z

References

Advisory
Free Home-Networking Courses, tutorials and security checklists

USAGE: Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.