MitreCVE-2019-16190CVE-2019-16190
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
79.0%
SharePort Web Access on D-Link DIR-868L REVB through 2.03, DIR-885L REVA through 1.20, and DIR-895L REVA through 1.21 devices allows Authentication Bypass, as demonstrated by a direct request to folder_view.php or category_view.php.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| dlink | dir-868l_firmware | * | cpe:2.3:o:dlink:dir-868l_firmware:*:*:*:*:*:*:*:* |
| dlink | dir-868l | b | cpe:2.3:h:dlink:dir-868l:b:*:*:*:*:*:*:* |
| dlink | dir-885l_firmware | * | cpe:2.3:o:dlink:dir-885l_firmware:*:*:*:*:*:*:*:* |
| dlink | dir-885l | a | cpe:2.3:h:dlink:dir-885l:a:*:*:*:*:*:*:* |
| dlink | dir-895l_firmware | * | cpe:2.3:o:dlink:dir-895l_firmware:*:*:*:*:*:*:*:* |
| dlink | dir-895l | a | cpe:2.3:h:dlink:dir-895l:a:*:*:*:*:*:*:* |
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
79.0%