Описание
An Authentication Bypass vulnerability exists in upnp/asf-mp4.asf when streaming live video in D-Link TESCO DCS-2121 1.05_TESCO, TESCO DCS-2102 1.05_TESCO, DCS-2121 1.06_FR, 1.06, and 1.05_RU, DCS-2102 1.06_FR. 1.06, and 1.05_RU, which could let a malicious user obtain sensitive information.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Permissions Required
- ExploitThird Party Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Permissions Required
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:o:dlink:dcs-2102_firmware:1.05:*:*:*:*:*:*:*
cpe:2.3:o:dlink:dcs-2102_firmware:1.06:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dcs-2102:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
Одно из
cpe:2.3:o:dlink:dcs-2121_firmware:1.05:*:*:*:*:*:*:*
cpe:2.3:o:dlink:dcs-2121_firmware:1.06:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dcs-2121:-:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.72694
Высокий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
почти 4 года назад
An Authentication Bypass vulnerability exists in upnp/asf-mp4.asf when streaming live video in D-Link TESCO DCS-2121 1.05_TESCO, TESCO DCS-2102 1.05_TESCO, DCS-2121 1.06_FR, 1.06, and 1.05_RU, DCS-2102 1.06_FR. 1.06, and 1.05_RU, which could let a malicious user obtain sensitive information.
EPSS
Процентиль: 99%
0.72694
Высокий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-287