exploitDog

GHSA-x6xj-cmvp-3m3j

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.1

Описание

D-Link DGS-1100 devices with Rev.B firmware 1.01.018 have a hardcoded SSL private key, which allows man-in-the-middle attackers to spoof devices by hijacking an HTTPS session.

D-Link DGS-1100 devices with Rev.B firmware 1.01.018 have a hardcoded SSL private key, which allows man-in-the-middle attackers to spoof devices by hijacking an HTTPS session.

Ссылки

EPSS

Процентиль: 73%

0.00767

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-798

Связанные уязвимости

CVE-2016-10125

CVSS3: 8.1

nvd

около 9 лет назад

D-Link DGS-1100 devices with Rev.B firmware 1.01.018 have a hardcoded SSL private key, which allows man-in-the-middle attackers to spoof devices by hijacking an HTTPS session.

EPSS

Процентиль: 73%

0.00767

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-798