CVE-2015-0153

Опубликовано: 12 апр. 2018

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

D-Link DIR-815 devices with firmware before 2.07.B01 allow remote attackers to obtain sensitive information by leveraging cleartext storage of the wireless key.

Ссылки

ftp://ftp2.dlink.com/SECURITY_ADVISEMENTS/DIR-815/REVB/DIR-815_REVB_FIRMWARE_PATCH_NOTES_2.07.B01_EN.PDF
Release Notes
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/110586
Third Party Advisory
VDB Entry
ftp://ftp2.dlink.com/SECURITY_ADVISEMENTS/DIR-815/REVB/DIR-815_REVB_FIRMWARE_PATCH_NOTES_2.07.B01_EN.PDF
Release Notes
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/110586
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:dlink:dir-815_firmware:*:*:*:*:*:*:*:*

Версия до 2.07.b01 (исключая)

cpe:2.3:h:dlink:dir-815:-:*:*:*:*:*:*:*

EPSS

Процентиль: 62%

0.00425

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-320

Связанные уязвимости

GHSA-8phr-9m63-498x