CVE-2023-36090

Опубликовано: 31 июл. 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Authentication Bypass vulnerability in D-Link DIR-885L FW102b01 allows remote attackers to gain escalated privileges via phpcgi. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Ссылки

https://www.dlink.com/en/security-bulletin/
Vendor Advisory
https://www.dlink.com/en/support
Not Applicable
https://www.dlink.com/en/security-bulletin/
Vendor Advisory
https://www.dlink.com/en/support
Not Applicable

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:dlink:dir-885l_firmware:1.02:b01:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-885l:-:*:*:*:*:*:*:*

EPSS

Процентиль: 60%

0.00394

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-863

Связанные уязвимости

GHSA-9gm9-9rq7-5mcj

CVSS3: 9.8

github

больше 2 лет назад

** UNSUPPORTED WHEN ASSIGNED ** Authentication Bypass vulnerability in D-Link DIR-885L FW102b01 allows remote attackers to gain escalated privileges via phpcgi. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

BDU:2023-04386

CVSS3: 7.3

fstec