exploitDog

CVE-2016-10180

Опубликовано: 30 янв. 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

An issue was discovered on the D-Link DWR-932B router. WPS PIN generation is based on srand(time(0)) seeding.

Ссылки

http://www.securityfocus.com/bid/95877
Broken Link
Third Party Advisory
VDB Entry
https://pierrekim.github.io/blog/2016-09-28-dlink-dwr-932b-lte-routers-vulnerabilities.html
Exploit
Technical Description
Third Party Advisory
http://www.securityfocus.com/bid/95877
Broken Link
Third Party Advisory
VDB Entry
https://pierrekim.github.io/blog/2016-09-28-dlink-dwr-932b-lte-routers-vulnerabilities.html
Exploit
Technical Description
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:dlink:dwr-932b_firmware:02.02eu:revb:*:*:*:*:*:*

cpe:2.3:h:dlink:dwr-932b:-:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03498

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-335

CWE-330

Связанные уязвимости

GHSA-8vx9-59h6-x23v

CVSS3: 7.5

github

больше 3 лет назад

An issue was discovered on the D-Link DWR-932B router. WPS PIN generation is based on srand(time(0)) seeding.

EPSS

Процентиль: 87%

0.03498

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-335

CWE-330