Sign-up

ID

VAR-201911-1958


TITLE

Command Execution Vulnerabilities in Multiple D-Link Routers

Trust: 0.6

sources: CNVD: CNVD-2019-41036

DESCRIPTION

D-Link DIR-855L A1, DAP-1533 A1, DIR-862L A1, DIR-835 A1, DIR-615 I3, DIR-825 C1 are all wireless router products of D-Link. There are command execution vulnerabilities in several D-Link routers. An attacker could exploit this vulnerability to gain administrator privileges.

Trust: 0.6

sources: CNVD: CNVD-2019-41036

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2019-41036

AFFECTED PRODUCTS

vendor:d linkmodel:dir-855l a1scope: - version: -

Trust: 0.6

vendor:d linkmodel:dap-1533 a1scope: - version: -

Trust: 0.6

vendor:d linkmodel:dir-862l a1scope: - version: -

Trust: 0.6

vendor:d linkmodel:dir-835 a1scope: - version: -

Trust: 0.6

vendor:d linkmodel:dir-615 i3scope: - version: -

Trust: 0.6

vendor:d linkmodel:dir-825 c1scope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2019-41036

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2019-41036
value: HIGH

Trust: 0.6

CNVD: CNVD-2019-41036
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2019-41036

PATCH

title:D-Link router has a command execution vulnerabilityurl:https://www.cnvd.org.cn/patchinfo/show/184949

Trust: 0.6

sources: CNVD: CNVD-2019-41036

EXTERNAL IDS

db:CNVDid:CNVD-2019-41036

Trust: 0.6

sources: CNVD: CNVD-2019-41036

SOURCES

db:CNVDid:CNVD-2019-41036

LAST UPDATE DATE

2022-05-04T10:18:36.238000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2019-41036date:2019-11-19T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2019-41036date:2019-11-23T00:00:00