Lucene search

[email protected]NVD:CVE-2021-3182

HistoryJan 19, 2021 - 3:15 p.m.

CVE-2021-3182

2021-01-1915:15:12

CWE-120

CWE-787

[email protected]

web.nvd.nist.gov

d-link

buffer overflow

dcs-5220

vulnerability

products

no longer supported

maintainer

CVSS2

7.7

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:S/C:C/I:C/A:C

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

Confidence

High

EPSS

Percentile

12.6%

JSON

D-Link DCS-5220 devices have a buffer overflow. NOTE: This vulnerability only affects products that are no longer supported by the maintainer

Affected configurations

Nvd

Node

dlinkdcs-5220_firmwareMatch-

AND

dlinkdcs-5220Match-

VendorProductVersionCPE
dlinkdcs-5220_firmware-cpe:2.3:o:dlink:dcs-5220_firmware:-:*:*:*:*:*:*:*
dlinkdcs-5220-cpe:2.3:h:dlink:dcs-5220:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
dlink	dcs-5220_firmware	-	cpe:2.3:o:dlink:dcs-5220_firmware:-:::::::*
dlink	dcs-5220	-	cpe:2.3:h:dlink:dcs-5220:-:::::::*

References

supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10203

CVSS2

7.7

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:S/C:C/I:C/A:C

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

Confidence

High

EPSS

Percentile

12.6%

JSON

Related for NVD:CVE-2021-3182

prion1 cve1 cvelist1 vulnrichment1