Vulnerability Details CVE-2019-15656
D-Link DSL-2875AL and DSL-2877AL devices through 1.00.05 are prone to information disclosure via a simple crafted request to index.asp on the web management server because of username_v and password_v variables.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 77.6%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2019-15656
-
cpe:2.3:h:dlink:dsl-2875al:-
-
cpe:2.3:h:dlink:dsl-2877al:-
-
cpe:2.3:o:dlink:dsl-2875al_firmware:1.00.05
-
cpe:2.3:o:dlink:dsl-2877al_firmware:1.00.05