CVE-2020-29323

2021-06-0419:39:29

CSW

www.cve.org

d-link

router

credentials disclosure

telnet service

firmware

unauthenticated attacker

sensitive data

EPSS

0.005

Percentile

75.2%

JSON

The D-link router DIR-885L-MFC 1.15b02, v1.21b05 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that allows an unauthenticated attacker to gain access to the firmware and to extract sensitive data.

CNA Affected

[
  {
    "product": "D-Link Router DIR-885L-MFC",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "1.15b02,v1.21b05"
      }
    ]
  }
]

References

cybersecurityworks.com/zerodays/cve-2020-29323-telnet-hardcoded-credentials.html

EPSS

0.005

Percentile

75.2%

JSON

Related for CVELIST:CVE-2020-29323