Dcs-2530l Firmware Security Vulnerabilities and Issues — Dcs-2530l Firmware CVE List

Lucene search

DlinkDcs-2530l Firmware

3 matches found

CVE•added 2020/09/02 4:15 p.m.•199 views

CVE-2020-25078

An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. The unauthenticated /config/getuser endpoint allows for remote administrator password disclosure.

7.5CVSS7.7AI score0.94032EPSS

CVE•added 2020/09/02 4:15 p.m.•72 views

CVE-2020-25079

An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. cgi-bin/ddns_enc.cgi allows authenticated command injection.

9CVSS8.9AI score0.18257EPSS

CVE•added 2017/04/24 10:59 a.m.•71 views

CVE-2017-7852

D-Link DCS cameras have a weak/insecure CrossDomain.XML file that allows sites hosting malicious Flash objects to access and/or change the device's settings via a CSRF attack. This is because of the 'allow-access-from domain' child element set to *, thus accepting requests from any domain. If a vic...

8.8CVSS8.5AI score0.01001EPSS