CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
53.1%
D-Link DIR-859 routers before v1.07b03_beta allow Unauthenticated Information Disclosure via the AUTHORIZED_GROUP=1%0a value, as demonstrated by vpnconfig.php.
Vendor | Product | Version | CPE |
---|---|---|---|
dlink | dir-859_firmware | * | cpe:2.3:o:dlink:dir-859_firmware:*:*:*:*:*:*:*:* |
dlink | dir-859_firmware | 1.06b01 | cpe:2.3:o:dlink:dir-859_firmware:1.06b01:beta1:*:*:*:*:*:* |
dlink | dir-859 | - | cpe:2.3:h:dlink:dir-859:-:*:*:*:*:*:*:* |
dlink | dir-822_firmware | * | cpe:2.3:o:dlink:dir-822_firmware:*:*:*:*:*:*:*:* |
dlink | dir-822 | - | cpe:2.3:h:dlink:dir-822:-:*:*:*:*:*:*:* |
dlink | dir-823_firmware | * | cpe:2.3:o:dlink:dir-823_firmware:*:*:*:*:*:*:*:* |
dlink | dir-823 | - | cpe:2.3:h:dlink:dir-823:-:*:*:*:*:*:*:* |
dlink | dir-865l_firmware | * | cpe:2.3:o:dlink:dir-865l_firmware:*:*:*:*:*:*:*:* |
dlink | dir-865l | - | cpe:2.3:h:dlink:dir-865l:-:*:*:*:*:*:*:* |
dlink | dir-868l_firmware | * | cpe:2.3:o:dlink:dir-868l_firmware:*:*:*:*:*:*:*:* |
medium.com/%40s1kr10s/d-link-dir-859-unauthenticated-information-disclosure-en-faf1a9a13f3f
medium.com/%40s1kr10s/d-link-dir-859-unauthenticated-information-disclosure-es-6540f7f55b03
supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10146
supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10147
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
53.1%