CVE-2019-6969

The web interface of the D-Link DVA-5592 20180823 is vulnerable to an authentication bypass that allows an unauthenticated user to have access to sensitive information such as the Wi-Fi password and the phone number (if VoIP is in use).
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:dlink:dva-5592_firmware:20180823:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dva-5592:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:47

Type Values Removed Values Added
References () https://rhaidiz.net/2019/02/27/dribble-router-vulns-dlink-alcatel-cve-2019-6969-cve-2019-6968-cve-2019-7163/ - Exploit, Third Party Advisory () https://rhaidiz.net/2019/02/27/dribble-router-vulns-dlink-alcatel-cve-2019-6969-cve-2019-6968-cve-2019-7163/ - Exploit, Third Party Advisory

Information

Published : 2019-08-02 21:15

Updated : 2024-11-21 04:47


NVD link : CVE-2019-6969

Mitre link : CVE-2019-6969

CVE.ORG link : CVE-2019-6969


JSON object : View

Products Affected

dlink

  • dva-5592_firmware
  • dva-5592
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')