2 matches found
CVE-2019-17506
There are some web interfaces without authentication requirements on D-Link DIR-868L B1-2.03 and DIR-817LW A1-1.04 routers. An attacker can get the router's username and password and other information via a DEVICE.ACCOUNT value for SERVICES in conjunction with AUTHORIZEDGROUP=1%0a to getcfg.php...
PT-2019-4070 · D Link · D-Link Dir-868L +1
Name of the Vulnerable Software and Affected Versions: D-Link DIR-868L version B1-2.03 D-Link DIR-817LW version A1-1.04 Description: The issue is related to a lack of authentication requirements in the web interfaces of the affected routers. An attacker can exploit this by using the DEVICE.ACCOUN...