Количество 3
Количество 3
CVE-2018-12710
An issue was discovered on D-Link DIR-601 2.02NA devices. Being local to the network and having only "User" account (which is a low privilege account) access, an attacker can intercept the response from a POST request to obtain "Admin" rights due to the admin password being displayed in XML.
GHSA-5wr7-m75g-xc37
An issue was discovered on D-Link DIR-601 2.02NA devices. Being local to the network and having only "User" account (which is a low privilege account) access, an attacker can intercept the response from a POST request to obtain "Admin" rights due to the admin password being displayed in XML.
BDU:2023-02934
Уязвимость микропрограммного обеспечения маршрутизатора D-Link DIR-601, связанная с передачей критичной информации открытым текстом, позволяющая нарушителю повысить свои привилегии
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-12710 An issue was discovered on D-Link DIR-601 2.02NA devices. Being local to the network and having only "User" account (which is a low privilege account) access, an attacker can intercept the response from a POST request to obtain "Admin" rights due to the admin password being displayed in XML. | CVSS3: 8 | 59% Средний | больше 7 лет назад |
| GHSA-5wr7-m75g-xc37 An issue was discovered on D-Link DIR-601 2.02NA devices. Being local to the network and having only "User" account (which is a low privilege account) access, an attacker can intercept the response from a POST request to obtain "Admin" rights due to the admin password being displayed in XML. | CVSS3: 8 | 59% Средний | больше 3 лет назад |
 | BDU:2023-02934 Уязвимость микропрограммного обеспечения маршрутизатора D-Link DIR-601, связанная с передачей критичной информации открытым текстом, позволяющая нарушителю повысить свои привилегии | CVSS3: 8.8 | 59% Средний | больше 7 лет назад |
Уязвимостей на страницу