Lucene search
AnonymousZDI-23-537HistoryMay 04, 2023 - 12:00 a.m.
D-Link DAP-1360 Hardcoded Credentials Authentication Bypass Vulnerability
2023-05-0400:00:00
Anonymous
www.zerodayinitiative.com
9
d-link
dap-1360
hardcoded credentials
authentication bypass
vulnerability
network-adjacent attackers
web-based user interface
firmware
default credentials
exploit
EPSS
0.001
Percentile
16.2%
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of login requests to the web-based user interface. The firmware contains hard-coded default credentials. An attacker can leverage this vulnerability to bypass authentication on the system.
Related
nvd
nvd
CVE-2023-32145
2024-05-03 02:15:18
vulnrichment
vulnrichment
cve
cve
CVE-2023-32145
2024-05-03 02:15:18
cvelist
cvelist
openvas
openvas
D-Link DAP-1360 Rev. F / DAP-2020 Rev. A2 Devices Multiple Vulnerabilities
2024-08-12 00:00:00