Sign-up

ID

VAR-202103-1670


TITLE

Many D-Link routers have weak password vulnerabilities

Trust: 0.6

sources: CNVD: CNVD-2021-12755

DESCRIPTION

D-Link Electronic Equipment (Shanghai) Co., Ltd. was registered and established in the Free Trade Zone Market Supervision Administration on August 13, 2002. The company's business scope includes routers, network cards, hubs, switches, converters, etc. in the region. Many D-Link routers have weak password vulnerabilities, which can be exploited by attackers to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-12755

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2021-12755

AFFECTED PRODUCTS

vendor:d link electronic equipmentmodel:d-link di-7400g+-19.12.25a1scope: - version: -

Trust: 0.6

vendor:d link electronic equipmentmodel:d-link di-7200g+-17.01.07a1scope: - version: -

Trust: 0.6

vendor:d link electronic equipmentmodel:d-link di-7003g-19.09.12a1scope: - version: -

Trust: 0.6

vendor:d link electronic equipmentmodel:d-link di-7500g-ci-18.11.07a1scope: - version: -

Trust: 0.6

vendor:d link electronic equipmentmodel:d-link di-7300g+-18.04.26a1scope: - version: -

Trust: 0.6

vendor:d link electronic equipmentmodel:d-link di-7100g+-18.08.08a1scope: - version: -

Trust: 0.6

vendor:d link electronic equipmentmodel:d-link di-7200g+-18.04.26a1scope: - version: -

Trust: 0.6

vendor:d link electronic equipmentmodel:d-link di-7300g+-19.12.25a1scope: - version: -

Trust: 0.6

vendor:d link electronic equipmentmodel:d-link di-7100g+-17.01.07a1scope: - version: -

Trust: 0.6

vendor:d link electronic equipmentmodel:d-link di-7500g+-17.11.07a2scope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2021-12755

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2021-12755
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2021-12755
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2021-12755

EXTERNAL IDS

db:CNVDid:CNVD-2021-12755

Trust: 0.6

sources: CNVD: CNVD-2021-12755

SOURCES

db:CNVDid:CNVD-2021-12755

LAST UPDATE DATE

2022-05-04T10:03:11.620000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2021-12755date:2021-02-26T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2021-12755date:2021-03-13T00:00:00