Details of VAR-202112-1081

ID

VAR-202112-1081

TITLE

(0Day) D-Link DIR-2055 HNAP PrivateLogin Incorrect Implementation of Authentication Algorithm Authentication Bypass Vulnerability

Trust: 0.7

sources: ZDI: ZDI-21-1026

DESCRIPTION

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-2055 routers. Authentication is not required to exploit this vulnerability.The specific flaw exists within the handling of HNAP login requests. The issue results from the lack of proper implementation of the authentication algorithm. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the router. D-Link DIR-2055 is a router device. The D-Link DIR-2055 HNAP PrivateLogin verification algorithm has security loopholes

Trust: 1.17

sources: ZDI: ZDI-21-1026 // CNVD: CNVD-2021-94838

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-94838

AFFECTED PRODUCTS

vendor:

d link

model:

dir-2055

scope:

version:

Trust: 1.3

sources: ZDI: ZDI-21-1026 // CNVD: CNVD-2021-94838

CVSS

SEVERITY

CVSSV2

CVSSV3

ZDI:	ZDI-21-1026
value:	HIGH
Trust: 0.7
CNVD:	CNVD-2021-94838
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2021-94838
severity:	HIGH
baseScore:	8.3
vectorString:	AV:A/AC:L/AU:N/C:C/I:C/A:C
accessVector:	ADJACENT_NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.5
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

ZDI:	ZDI-21-1026
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	ADJACENT
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.0
Trust: 0.7

sources: ZDI: ZDI-21-1026 // CNVD: CNVD-2021-94838

EXTERNAL IDS

db:	ZDI	id:	ZDI-21-1026	Trust: 1.3
db:	ZDI_CAN	id:	ZDI-CAN-12686	Trust: 0.7
db:	CNVD	id:	CNVD-2021-94838	Trust: 0.6

sources: ZDI: ZDI-21-1026 // CNVD: CNVD-2021-94838

REFERENCES

url:

https://www.zerodayinitiative.com/advisories/zdi-21-1026/

Trust: 0.6

sources: CNVD: CNVD-2021-94838

CREDITS

Anonymous

Trust: 0.7

sources: ZDI: ZDI-21-1026

SOURCES

db:	ZDI	id:	ZDI-21-1026
db:	CNVD	id:	CNVD-2021-94838

LAST UPDATE DATE

2022-05-17T02:03:08.671000+00:00

SOURCES UPDATE DATE

db:	ZDI	id:	ZDI-21-1026	date:	2021-08-26T00:00:00
db:	CNVD	id:	CNVD-2021-94838	date:	2021-12-07T00:00:00

SOURCES RELEASE DATE

db:	ZDI	id:	ZDI-21-1026	date:	2021-08-26T00:00:00
db:	CNVD	id:	CNVD-2021-94838	date:	2021-12-07T00:00:00