Summary
D-Link DCS is prone to an authentication-bypass vulnerability.
Attackers can exploit this issue to bypass authentication and to execute commands due to a remote information disclosure of the configuration.
Affected devices:
* D-Link DCS-930L, firmware version 1.04
* D-Link DCS-932L, firmware version 1.02
References
Severity
Classification
-
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe ColdFusion Authentication Bypass Vulnerability
- AlefMentor Multiple SQL Injection Vulnerabilities
- A-A-S Application Access Server Multiple Vulnerabilities
- Acute Control Panel SQL Injection Vulnerability and Remote File Include Vulnerability
- Apache Struts2 Showcase Skill Name Remote Code Execution Vulnerability