Vulnerability Details CVE-2018-9032
An authentication bypass vulnerability on D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router (Hardware Version : A1, B1; Firmware Version : 1.02-2.06) devices potentially allows attackers to bypass SharePort Web Access Portal by directly visiting /category_view.php or /folder_view.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.888
EPSS Ranking 99.5%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2018-9032
-
cpe:2.3:h:dlink:dir-850l:a1
-
cpe:2.3:h:dlink:dir-850l:b1
-
cpe:2.3:o:dlink:dir-850l_firmware:1.02
-
cpe:2.3:o:dlink:dir-850l_firmware:1.08b03
-
cpe:2.3:o:dlink:dir-850l_firmware:1.08trb03
-
cpe:2.3:o:dlink:dir-850l_firmware:1.09
-
cpe:2.3:o:dlink:dir-850l_firmware:1.14b07
-
cpe:2.3:o:dlink:dir-850l_firmware:1.21b07
-
cpe:2.3:o:dlink:dir-850l_firmware:2.06