An issue was discovered on D-Link DSL-2640B E1 EU_1.01 devices. The administrative interface doesnβt perform authentication checks for a firmware-update POST request. Any attacker that can access the administrative interface can install firmware of their choice.
CPE | Name | Operator | Version |
---|---|---|---|
dsl-2640b_firmware | eq | e1eu1.1 |