4 matches found
CVE-2019-19598
D-Link DAP-1860 devices before v1.04b03 Beta allow access to administrator functions without authentication via the HNAPAUTH header timestamp value. In HTTP requests, part of the HNAPAUTH header is the timestamp used to determine the time when the user sent the request. If this value is equal to...
CVE-2019-19598
creationtimestamp| type| source ---|---|--- 2024-03-07 15:11:42+00:00| seen| https://t.me/ctinow/202450...
CVE-2019-19598
D-Link DAP-1860 devices before v1.04b03 Beta allow access to administrator functions without authentication via the HNAPAUTH header timestamp value. In HTTP requests, part of the HNAPAUTH header is the timestamp used to determine the time when the user sent the request. If this value is equal to...
CVE-2019-19598
CVE-2019-19598 affects D-Link DAP-1860 devices prior to v1.04b03 Beta. The vulnerability allows bypassing authentication to access administrator functions via the HNAP_AUTH header timestamp; if the timestamp matches the device’s /var/hnap/timestamp value, the HNAP_AUTH check passes. This is an ad...