Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-7chx-66rj-q7wh

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 7.5

Описание

A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface (Firmware EU_1.03) allows an attacker to change DNS servers without being authenticated on the admin interface by submitting a crafted Forms/dns_1 POST request.

A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface (Firmware EU_1.03) allows an attacker to change DNS servers without being authenticated on the admin interface by submitting a crafted Forms/dns_1 POST request.

Ссылки

EPSS

Процентиль: 87%
0.03237
Низкий

7.5 High

CVSS3

CVE ID

CVE-2019-19225

Дефекты

CWE-306

Связанные уязвимости

nvd логотип

CVE-2019-19225

CVSS3: 7.5
nvd
почти 6 лет назад

A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface (Firmware EU_1.03) allows an attacker to change DNS servers without being authenticated on the admin interface by submitting a crafted Forms/dns_1 POST request.

EPSS

Процентиль: 87%
0.03237
Низкий

7.5 High

CVSS3

CVE ID

CVE-2019-19225

Дефекты

CWE-306