CVE-2024-41616

D-Link DIR-300 REVA FIRMWARE v1.06B05_WW contains hardcoded credentials in the Telnet service.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:dlink:dir-300_firmware:1.06b05_ww:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dir-300:a:*:*:*:*:*:*:*

History

07 Aug 2024, 20:54

Type Values Removed Values Added
CWE CWE-798
First Time Dlink dir-300
Dlink dir-300 Firmware
Dlink
Summary
  • (es) D-Link DIR-300 REVA FIRMWARE v1.06B05_WW contiene credenciales codificadas en el servicio Telnet.
CVSS v2 : unknown
v3 : 8.8
v2 : unknown
v3 : 9.8
CPE cpe:2.3:o:dlink:dir-300_firmware:1.06b05_ww:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dir-300:a:*:*:*:*:*:*:*
References () https://github.com/LYaoBoL/IOTsec/blob/main/D-Link/DIR300/CVE-2024-41616 - () https://github.com/LYaoBoL/IOTsec/blob/main/D-Link/DIR300/CVE-2024-41616 - Third Party Advisory
References () https://github.com/LYaoBoL/IOTsec/blob/main/D-Link/DIR300/D-Link300.md - () https://github.com/LYaoBoL/IOTsec/blob/main/D-Link/DIR300/D-Link300.md - Exploit, Third Party Advisory

06 Aug 2024, 16:35

Type Values Removed Values Added
CWE CWE-259
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.8

06 Aug 2024, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-08-06 16:15

Updated : 2024-08-07 20:54


NVD link : CVE-2024-41616

Mitre link : CVE-2024-41616

CVE.ORG link : CVE-2024-41616


JSON object : View

Products Affected

dlink

  • dir-300
  • dir-300_firmware
CWE
CWE-798

Use of Hard-coded Credentials

CWE-259

Use of Hard-coded Password