CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-18442

D-Link DCS-825L devices with firmware 1.08 do not employ a suitable mechanism to prevent denial-of-service (DoS) attacks. An attacker can harm the device availability (i.e., live-online video/audio streaming) by using the hping3 tool to perform an IPv4 flood attack. Verified attacks includes SYN flooding, UDP flooding, ICMP flooding, and SYN-ACK flooding.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 64.0%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 7.8

References

https://dojo.bullguard.com/dojo-by-bullguard/blog/i-got-my-eyeon-you-security-vulnerabilities-in-baby-monitor/
https://dojo.bullguard.com/dojo-by-bullguard/blog/i-got-my-eyeon-you-security-vulnerabilities-in-baby-monitor/

Products affected by CVE-2018-18442

Dlink » Dcs-825l » Version: N/A

cpe:2.3:h:dlink:dcs-825l:-
D-Link » Dcs-825l Firmware » Version: 1.08

cpe:2.3:o:d-link:dcs-825l_firmware:1.08

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-18442

Products

Pricing

Contact Us