Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 12:58 p.m.8 views

CVE-2018-19990

In the /HNAP1/SetWiFiVerifyAlpha message, the WPSPIN parameter is vulnerable, and the vulnerability affects D-Link DIR-822 B1 202KRb06 devices. In the SetWiFiVerifyAlpha.php source code, the WPSPIN parameter is saved in the $rphyinf1."/media/wps/enrollee/pin" and $rphyinf2."/media/wps/enrollee/pi...

10CVSS7.1AI score0.05264EPSS
Exploits2References1
NVD
NVD
added 2019/05/13 2:29 p.m.28 views

CVE-2018-19990

In the /HNAP1/SetWiFiVerifyAlpha message, the WPSPIN parameter is vulnerable, and the vulnerability affects D-Link DIR-822 B1 202KRb06 devices. In the SetWiFiVerifyAlpha.php source code, the WPSPIN parameter is saved in the $rphyinf1."/media/wps/enrollee/pin" and $rphyinf2."/media/wps/enrollee/pi...

10CVSS9.6AI score0.05264EPSS
Exploits2References1
Cvelist
Cvelist
added 2019/05/13 1:26 p.m.38 views

CVE-2018-19990

In the /HNAP1/SetWiFiVerifyAlpha message, the WPSPIN parameter is vulnerable, and the vulnerability affects D-Link DIR-822 B1 202KRb06 devices. In the SetWiFiVerifyAlpha.php source code, the WPSPIN parameter is saved in the $rphyinf1."/media/wps/enrollee/pin" and $rphyinf2."/media/wps/enrollee/pi...

9.6AI score0.05264EPSS
Exploits2References1
CVE
CVE
added 2019/05/13 1:26 p.m.66 views

CVE-2018-19990

CVE-2018-19990 concerns D-Link DIR-822 B1 202KRb06 where /HNAP1/SetWiFiVerifyAlpha processes WPSPIN in XML and stores it in internal memory without input validation; the do_wps path uses that value with an insecure wpatalk flow. Public references also tag related issues (e.g., CVE-2018-19986) in ...

10CVSS9.4AI score0.05264EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder