Details of VAR-201407-0720

ID

VAR-201407-0720

TITLE

Multiple vulnerabilities in the D-Link AP 3200

Trust: 0.6

sources: CNVD: CNVD-2014-04781

DESCRIPTION

There are several vulnerabilities in the D-Link AP 3200: 1. D-Link AP 3200 is a wireless access device from D-Link. D-Link AP 3200 has a security bypass and information disclosure vulnerability. Attackers can use these vulnerabilities to bypass security restrictions or gain access to sensitive information to perform unauthorized operations in user sessions. D-Link DWL-3200AP is prone to the following security vulnerabilities: 1. A security-bypass vulnerability 2. Other attacks are also possible

Trust: 1.35

sources: CNVD: CNVD-2014-04781 // CNNVD: CNNVD-201407-725 // BID: 68964

IOT TAXONOMY

category:

['IoT', 'Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2014-04781

AFFECTED PRODUCTS

vendor:	d link	model:	ap	scope:	eq	version:	3200	Trust: 0.6
vendor:	d link	model:	dwl-3200ap 2.55rc549	scope:	-	version:	-	Trust: 0.3
vendor:	d link	model:	dwl-3200ap	scope:	eq	version:	0	Trust: 0.3

sources: CNVD: CNVD-2014-04781 // BID: 68964

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2014-04781
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2014-04781
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2014-04781

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201407-725

TYPE

Unknown

Trust: 0.3

sources: BID: 68964

EXTERNAL IDS

db:	BID	id:	68964	Trust: 1.5
db:	CNVD	id:	CNVD-2014-04781	Trust: 0.6
db:	CNNVD	id:	CNNVD-201407-725	Trust: 0.6

sources: CNVD: CNVD-2014-04781 // BID: 68964 // CNNVD: CNNVD-201407-725

REFERENCES

url:	http://www.securityfocus.com/bid/68964	Trust: 1.2
url:	http://www.dlink.com/	Trust: 0.3

sources: CNVD: CNVD-2014-04781 // BID: 68964 // CNNVD: CNNVD-201407-725

CREDITS

pws

Trust: 0.9

sources: BID: 68964 // CNNVD: CNNVD-201407-725

SOURCES

db:	CNVD	id:	CNVD-2014-04781
db:	BID	id:	68964
db:	CNNVD	id:	CNNVD-201407-725

LAST UPDATE DATE

2022-05-17T01:52:41.244000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2014-04781	date:	2014-08-05T00:00:00
db:	BID	id:	68964	date:	2014-08-14T14:30:00
db:	CNNVD	id:	CNNVD-201407-725	date:	2014-08-01T00:00:00

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2014-04781	date:	2014-08-05T00:00:00
db:	BID	id:	68964	date:	2014-07-30T00:00:00
db:	CNNVD	id:	CNNVD-201407-725	date:	2014-07-30T00:00:00