3 matches found
CVE-2020-24577
An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU2.31V1.1.47ae55. The One Touch application discloses sensitive information, such as the hashed admin login password and the Internet provider connection username and cleartext password, in the application's response body...
CVE-2020-24577
An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU2.31V1.1.47ae55. The One Touch application discloses sensitive information, such as the hashed admin login password and the Internet provider connection username and cleartext password, in the application's response body...
CVE-2020-24577
Summary: CVE-2020-24577 affects D-Link DSL-2888A devices with firmware before AU_2.31_V1.1.47ae55. The One Touch application exposes sensitive data in its response for the URIs “/tmp/var/passwd” and “/tmp/home/wan_stat,” including the hashed admin password, provider username, and cleartext passwo...