exploitDog

GHSA-2qxc-rcjp-37j2

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

** UNSUPPORTED WHEN ASSIGNED ** D-Link DIR-610 devices allow Information Disclosure via SERVICES=DEVICE.ACCOUNT%0AAUTHORIZED_GROUP=1 to getcfg.php. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

** UNSUPPORTED WHEN ASSIGNED ** D-Link DIR-610 devices allow Information Disclosure via SERVICES=DEVICE.ACCOUNT%0AAUTHORIZED_GROUP=1 to getcfg.php. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Ссылки

EPSS

Процентиль: 100%

0.92258

Критический

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200

CWE-74

Связанные уязвимости

CVE-2020-9376

CVSS3: 7.5

nvd

больше 5 лет назад

D-Link DIR-610 devices allow Information Disclosure via SERVICES=DEVICE.ACCOUNT%0AAUTHORIZED_GROUP=1 to getcfg.php. NOTE: This vulnerability only affects products that are no longer supported by the maintainer

EPSS

Процентиль: 100%

0.92258

Критический

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200

CWE-74