The web interface of the D-Link DVA-5592 20180823 is vulnerable to an authentication bypass that allows an unauthenticated user to have access to sensitive information such as the Wi-Fi password and the phone number (if VoIP is in use).
References
Link | Resource |
---|---|
https://rhaidiz.net/2019/02/27/dribble-router-vulns-dlink-alcatel-cve-2019-6969-cve-2019-6968-cve-2019-7163/ | Exploit Third Party Advisory |
https://rhaidiz.net/2019/02/27/dribble-router-vulns-dlink-alcatel-cve-2019-6969-cve-2019-6968-cve-2019-7163/ | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 04:47
Type | Values Removed | Values Added |
---|---|---|
References | () https://rhaidiz.net/2019/02/27/dribble-router-vulns-dlink-alcatel-cve-2019-6969-cve-2019-6968-cve-2019-7163/ - Exploit, Third Party Advisory |
Information
Published : 2019-08-02 21:15
Updated : 2024-11-21 04:47
NVD link : CVE-2019-6969
Mitre link : CVE-2019-6969
CVE.ORG link : CVE-2019-6969
JSON object : View
Products Affected
dlink
- dva-5592_firmware
- dva-5592
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')