3 matches found
CVE-2019-17511
CVE-2019-17511 affects D-Link DIR-412 A1-1.14WW routers. The issue is exposed web pages that operate without authentication (notably log_get.php), enabling an attacker to retrieve the router’s log file and potentially map the intranet network structure. The root cause is lack of authentication on...
CVE-2019-17512
CVE-2019-17512 affects D-Link DIR-412 devices (A1-1.14WW). The issue arises from web interfaces that allow unauthenticated users to clear the router’s log by invoking log_clear.php with act=clear&logtype=sysact, which could erase attack traces. The NVD entry notes a base score of 6.4 (CVSS2) and ...
CVE-2018-25115
Multiple D-Link DIR-series routers (DIR-110, DIR-412, DIR-600, DIR-610, DIR-615, DIR-645, DIR-815) are affected by a remote code execution vulnerability in the /service.cgi endpoint. The flaw stems from improper input handling in the EVENT=CHECKFW parameter, which is passed directly to the system...