Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cisaCISACISA:CB56EF9CA511DD125626482598E6359A
HistoryOct 24, 2019 - 12:00 a.m.

EOL D-Link Routers Vulnerable to Remote Command Execution

2019-10-2400:00:00
us-cert.cisa.gov
12

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON

The CERT Coordination Center (CERT/CC) has released information on a vulnerability (CVE-2019-16920) affecting multiple D-Link routers. A remote attacker could exploit this vulnerability to take control of an affected device.

D-Link no longer provides support to the affected end-of-life (EOL) devices, and updates will not be made available. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Vulnerability Note VU#766427 and replace any affected device with one currently supported by the vendor.

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts.

We recently updated our anonymous product survey; weโ€™d welcome your feedback.

Related

checkpoint_advisories 1
attackerkb 1
openvas 2
cve 1
githubexploit 1
nuclei 1
nessus 1
prion 1
cert 1
cisa_kev 1
symantec 1
threatpost 4
ics 2
checkpoint_advisories
checkpoint_advisories
D-Link Routers Remote Code Execution (CVE-2019-16920)
2022-04-19 00:00:00
attackerkb
attackerkb
CVE-2019-16920
2019-09-27 00:00:00
openvas
openvas
D-Link Multiple DIR Devices RCE Vulnerability (Sep 2019)
2023-02-24 00:00:00
D-Link Multiple DAP/DHP Devices RCE Vulnerability (Sep 2019)
2023-02-24 00:00:00
cve
cve
CVE-2019-16920
2019-09-27 12:15:00
githubexploit
githubexploit
Exploit for OS Command Injection in Dlink Dir-655 Firmware
2019-10-15 17:54:03
nuclei
nuclei
D-Link Routers - Remote Code Execution
2020-10-01 08:21:26
nessus
nessus
D-Link Routers Unauthenticated RCE (CVE-2019-16920)
2022-11-03 00:00:00
prion
prion
Command injection
2019-09-27 12:15:00
cert
cert
Multiple D-Link routers vulnerable to remote command execution
2019-10-23 00:00:00
cisa_kev
cisa_kev
D-Link Multiple Routers Command Injection Vulnerability
2022-03-25 00:00:00
symantec
symantec
Multiple D-Link Products CVE-2019-16920 Remote Command Injection Vulnerability
2019-09-27 00:00:00
threatpost
threatpost
D-Link Adds More Buggy Router Models to โ€˜Wonโ€™t Fixโ€™ List
2019-11-19 21:52:34
D-Link Home Routers Open to Remote Takeover Will Remain Unpatched
2019-10-07 18:16:31
D-Link, IoT Devices Under Attack By Tor-Based Gafgyt Variant
2021-03-05 15:55:41
ics
ics
Peopleโ€™s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices
2022-06-10 12:00:00
Potential for China Cyber Response to Heightened U.S.โ€“China Tensions
2020-10-20 12:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON
Related for CISA:CB56EF9CA511DD125626482598E6359A
checkpoint_advisories1attackerkb1openvas2cve1githubexploit1nuclei1nessus1prion1cert1cisa_kev1symantec1threatpost4ics2