spaces.htm on multiple D-Link devices (DSL, DIR, DWR) allows remote unauthenticated attackers to discover admin credentials.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2018/Dec/45 | Mailing List Third Party Advisory |
http://www.securityfocus.com/bid/106344 | Third Party Advisory VDB Entry |
http://seclists.org/fulldisclosure/2018/Dec/45 | Mailing List Third Party Advisory |
http://www.securityfocus.com/bid/106344 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
History
21 Nov 2024, 03:55
Type | Values Removed | Values Added |
---|---|---|
References | () http://seclists.org/fulldisclosure/2018/Dec/45 - Mailing List, Third Party Advisory | |
References | () http://www.securityfocus.com/bid/106344 - Third Party Advisory, VDB Entry |
Information
Published : 2018-12-21 23:29
Updated : 2024-11-21 03:55
NVD link : CVE-2018-18008
Mitre link : CVE-2018-18008
CVE.ORG link : CVE-2018-18008
JSON object : View
Products Affected
dlink
- dir-140l_firmware
- dwr-116_firmware
- dir-640l_firmware
- dsl-2770l
- dwr-555
- dir-640l
- dwr-921
- dsl-2770l_firmware
- dwr-921_firmware
- dwr-555_firmware
- dir-140l
- dwr-116
- dwr-512_firmware
- dwr-512
CWE
CWE-798
Use of Hard-coded Credentials