CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-10957

CSRF exists on D-Link DIR-868L devices, leading to (for example) a change to the Admin password. hedwig.cgi and pigwidgeon.cgi are two of the affected components.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 62.7%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

https://packetstormsecurity.com/files/147525/D-Link-DIR-868L-1.12-Cross-Site-Request-Forgery.html
https://packetstormsecurity.com/files/147525/D-Link-DIR-868L-1.12-Cross-Site-Request-Forgery.html

Products affected by CVE-2018-10957

Dlink » Dir-868l » Version: N/A

cpe:2.3:h:dlink:dir-868l:-
Dlink » Dir-868l Firmware » Version: 1.12

cpe:2.3:o:dlink:dir-868l_firmware:1.12

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-10957

Products

Pricing

Contact Us