Lucene search

K
cveZdiCVE-2020-27862
HistoryFeb 12, 2021 - 12:15 a.m.

CVE-2020-27862

2021-02-1200:15:12
CWE-77
zdi
web.nvd.nist.gov
51
3
vulnerability
d-link
dva-2800
dsl-2888a
routers
remote code execution
dhttpd service
tcp port 8008
unauthenticated
cve-2020-27862
nvd
zdi-can-10911

CVSS2

5.8

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

68.4%

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DVA-2800 and DSL-2888A routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dhttpd service, which listens on TCP port 8008 by default. When parsing the path parameter, the process does not properly validate a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of the web server. Was ZDI-CAN-10911.

Affected configurations

Nvd
Vulners
Node
dlinkdva-2800_firmwareMatch2.30_au
AND
dlinkdva-2800Matchrevision_t
Node
dlinkdsl-2888a_firmwareMatch2.30_au
AND
dlinkdsl-2888aMatchrevision_t
VendorProductVersionCPE
dlinkdva-2800_firmware2.30_aucpe:2.3:o:dlink:dva-2800_firmware:2.30_au:*:*:*:*:*:*:*
dlinkdva-2800revision_tcpe:2.3:h:dlink:dva-2800:revision_t:*:*:*:*:*:*:*
dlinkdsl-2888a_firmware2.30_aucpe:2.3:o:dlink:dsl-2888a_firmware:2.30_au:*:*:*:*:*:*:*
dlinkdsl-2888arevision_tcpe:2.3:h:dlink:dsl-2888a:revision_t:*:*:*:*:*:*:*

CNA Affected

[
  {
    "product": "Multiple Routers",
    "vendor": "D-Link",
    "versions": [
      {
        "status": "affected",
        "version": "firmware version 2.3"
      }
    ]
  }
]

Social References

More

CVSS2

5.8

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

68.4%

Related for CVE-2020-27862