Sign-up

ID

VAR-202004-2247


TITLE

Multiple D-Link routers have logic flaws

Trust: 0.6

sources: CNVD: CNVD-2020-23845

DESCRIPTION

D-Link DIR-882, DIR-878, DIR-867, DIR-853 are all D-Link wireless router products. Many D-Link routers have a logic flaw vulnerability, which can be exploited by an attacker to log in as an administrator.

Trust: 0.6

sources: CNVD: CNVD-2020-23845

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2020-23845

AFFECTED PRODUCTS

vendor:d linkmodel:dir-867 1.10b04scope: - version: -

Trust: 0.6

vendor:d linkmodel:dir-882 1.20b06scope: - version: -

Trust: 0.6

vendor:d linkmodel:dir-878 1.20b05scope: - version: -

Trust: 0.6

vendor:d linkmodel:dir-853scope:eqversion:1.1

Trust: 0.6

sources: CNVD: CNVD-2020-23845

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2020-23845
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2020-23845
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2020-23845

PATCH

title:Logic flaw in D-Link routerurl:https://www.cnvd.org.cn/patchinfo/show/208585

Trust: 0.6

sources: CNVD: CNVD-2020-23845

EXTERNAL IDS

db:CNVDid:CNVD-2020-23845

Trust: 0.6

sources: CNVD: CNVD-2020-23845

SOURCES

db:CNVDid:CNVD-2020-23845

LAST UPDATE DATE

2022-05-04T09:02:42.852000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2020-23845date:2020-04-24T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2020-23845date:2020-04-16T00:00:00