An issue in DLINK DPH-400SE FRU 2.2.15.8 allows a remote attacker to escalate privileges via the User Modify function in the Maintenance/Access function component.
References
Link | Resource |
---|---|
https://hackmd.io/%40tahaafarooq/dlink-dph-400se-cwe-200 | |
https://www.exploit-db.com/exploits/51709 | Exploit Third Party Advisory VDB Entry |
https://hackmd.io/%40tahaafarooq/dlink-dph-400se-cwe-200 | |
https://www.exploit-db.com/exploits/51709 | Exploit Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 08:25
Type | Values Removed | Values Added |
---|---|---|
References | () https://hackmd.io/%40tahaafarooq/dlink-dph-400se-cwe-200 - | |
References | () https://www.exploit-db.com/exploits/51709 - Exploit, Third Party Advisory, VDB Entry |
07 Nov 2023, 04:21
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
13 Oct 2023, 21:28
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://hackmd.io/@tahaafarooq/dlink-dph-400se-cwe-200 - Exploit, Third Party Advisory | |
References | (MISC) https://www.exploit-db.com/exploits/51709 - Exploit, Third Party Advisory, VDB Entry | |
CWE | CWE-269 | |
First Time |
Dlink
Dlink dph-400se Firmware Dlink dph-400se |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
CPE | cpe:2.3:o:dlink:dph-400se_firmware:2.2.15.8:*:*:*:*:*:*:* cpe:2.3:h:dlink:dph-400se:-:*:*:*:*:*:*:* |
11 Oct 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-10-11 18:15
Updated : 2024-11-21 08:25
NVD link : CVE-2023-43960
Mitre link : CVE-2023-43960
CVE.ORG link : CVE-2023-43960
JSON object : View
Products Affected
dlink
- dph-400se_firmware
- dph-400se
CWE
CWE-269
Improper Privilege Management