CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-14334

An issue was discovered on D-Link 6600-AP, DWL-3600AP, and DWL-8610AP Ax 4.2.0.14 21/03/2019 devices. There is post-authenticated Certificate and RSA Private Key extraction through an insecure sslcert-get.cgi HTTP command.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.8%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 2.1

References

http://packetstormsecurity.com/files/153840/D-Link-6600-AP-XSS-DoS-Information-Disclosure.html
https://us.dlink.com/en/security-advisory
https://www.dlink.com/en/security-bulletin
http://packetstormsecurity.com/files/153840/D-Link-6600-AP-XSS-DoS-Information-Disclosure.html
https://us.dlink.com/en/security-advisory
https://www.dlink.com/en/security-bulletin

Products affected by CVE-2019-14334

Dlink » 6600-Ap » Version: N/A

cpe:2.3:h:dlink:6600-ap:-
Dlink » Dwl-3600ap » Version: N/A

cpe:2.3:h:dlink:dwl-3600ap:-
Dlink » Dwl-8610ap » Version: N/A

cpe:2.3:h:dlink:dwl-8610ap:-
Dlink » 6600-Ap Firmware » Version: 4.2.0.14

cpe:2.3:o:dlink:6600-ap_firmware:4.2.0.14
Dlink » Dwl-3600ap Firmware » Version: 4.2.0.14

cpe:2.3:o:dlink:dwl-3600ap_firmware:4.2.0.14
Dlink » Dwl-8610ap Firmware » Version: 4.2.0.14

cpe:2.3:o:dlink:dwl-8610ap_firmware:4.2.0.14

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-14334

Products

Pricing

Contact Us