CVE-2024-41611

In D-Link DIR-860L REVA FIRMWARE PATCH 1.10..B04, the Telnet service contains hardcoded credentials, enabling attackers to log in remotely to the Telnet service and perform arbitrary commands.
Configurations

No configuration.

History

21 Nov 2024, 09:32

Type Values Removed Values Added
References () https://github.com/Nop3z/CVE/blob/main/dlink/dir-820/Dlink-860L-hardcoded-vulnerability.md - () https://github.com/Nop3z/CVE/blob/main/dlink/dir-820/Dlink-860L-hardcoded-vulnerability.md -
References () https://www.dlink.com/en/security-bulletin/ - () https://www.dlink.com/en/security-bulletin/ -

01 Aug 2024, 13:58

Type Values Removed Values Added
CWE CWE-798
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8

31 Jul 2024, 12:57

Type Values Removed Values Added
Summary
  • (es) En D-Link DIR-860L REVA FIRMWARE PATCH 1.10..B04, el servicio Telnet contiene credenciales codificadas, lo que permite a los atacantes iniciar sesión de forma remota en el servicio Telnet y realizar comandos arbitrarios.

30 Jul 2024, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-07-30 20:15

Updated : 2024-11-21 09:32


NVD link : CVE-2024-41611

Mitre link : CVE-2024-41611

CVE.ORG link : CVE-2024-41611


JSON object : View

Products Affected

No product.

CWE
CWE-798

Use of Hard-coded Credentials