6 matches found
CVE-2019-15656
D-Link DSL-2875AL and DSL-2877AL devices through 1.00.05 are prone to information disclosure via a simple crafted request to index.asp on the web management server because of usernamev and passwordv variables...
CVE-2019-15656
D-Link DSL-2875AL and DSL-2877AL devices through 1.00.05 are prone to information disclosure via a simple crafted request to index.asp on the web management server because of usernamev and passwordv variables...
Information disclosure
D-Link DSL-2875AL and DSL-2877AL devices through 1.00.05 are prone to information disclosure via a simple crafted request to index.asp on the web management server because of usernamev and passwordv variables...
CVE-2019-15656
CVE-2019-15656 affects D‑Link DSL-2875AL and DSL-2877AL devices up to firmware 1.00.05, where information disclosure is possible via a crafted request to index.asp on the web management server due to username_v and password_v variables. Some sources describe an attacker being able to obtain crede...
CVE-2019-15656
D-Link DSL-2875AL and DSL-2877AL devices through 1.00.05 are prone to information disclosure via a simple crafted request to index.asp on the web management server because of usernamev and passwordv variables...
CVE-2019-15655
CVE-2019-15655 affects D-Link DSL-2875AL devices (firmware 1.00.05 and earlier). A crafted unauthenticated request to the web management endpoint /romfile.cfg allows password disclosure by saving the configuration file, with the password stored in cleartext. The vulnerability is described across ...