Vulnerability Details CVE-2020-25757
A lack of input validation and access controls in Lua CGIs on D-Link DSR VPN routers may result in arbitrary input being passed to system command APIs, resulting in arbitrary command execution with root privileges. This affects DSR-150, DSR-250, DSR-500, and DSR-1000AC with firmware 3.14 and 3.17.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.8%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 8.3
References
- https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10195
- https://www.digitaldefense.com/news/zero-day-vuln-d-link-vpn-routers/
- https://www.dlink.com/en/security-bulletin
- https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10195
- https://www.digitaldefense.com/news/zero-day-vuln-d-link-vpn-routers/
- https://www.dlink.com/en/security-bulletin
Products affected by CVE-2020-25757
-
cpe:2.3:h:dlink:dsr-1000:-
-
cpe:2.3:h:dlink:dsr-1000ac:-
-
cpe:2.3:h:dlink:dsr-1000n:-
-
cpe:2.3:h:dlink:dsr-150:-
-
cpe:2.3:h:dlink:dsr-150n:-
-
cpe:2.3:h:dlink:dsr-250:-
-
cpe:2.3:h:dlink:dsr-250n:-
-
cpe:2.3:h:dlink:dsr-500:-
-
cpe:2.3:h:dlink:dsr-500ac:-
-
cpe:2.3:h:dlink:dsr-500n:-
-
cpe:2.3:o:dlink:dsr-1000_firmware:1.01b50
-
cpe:2.3:o:dlink:dsr-1000_firmware:1.02b11
-
cpe:2.3:o:dlink:dsr-1000_firmware:1.02b25
-
cpe:2.3:o:dlink:dsr-1000_firmware:1.03b12
-
cpe:2.3:o:dlink:dsr-1000_firmware:1.03b23
-
cpe:2.3:o:dlink:dsr-1000_firmware:1.03b27
-
cpe:2.3:o:dlink:dsr-1000_firmware:1.03b36
-
cpe:2.3:o:dlink:dsr-1000_firmware:1.03b43
-
cpe:2.3:o:dlink:dsr-1000_firmware:1.04b58
-
cpe:2.3:o:dlink:dsr-1000_firmware:1.06b43
-
cpe:2.3:o:dlink:dsr-1000_firmware:1.06b53
-
cpe:2.3:o:dlink:dsr-1000_firmware:1.08b77
-
cpe:2.3:o:dlink:dsr-1000_firmware:3.17
-
cpe:2.3:o:dlink:dsr-1000ac_firmware:3.17
-
cpe:2.3:o:dlink:dsr-1000n_firmware:1.01b50
-
cpe:2.3:o:dlink:dsr-1000n_firmware:1.02b11
-
cpe:2.3:o:dlink:dsr-1000n_firmware:1.02b25
-
cpe:2.3:o:dlink:dsr-1000n_firmware:1.03b12
-
cpe:2.3:o:dlink:dsr-1000n_firmware:1.03b23
-
cpe:2.3:o:dlink:dsr-1000n_firmware:1.03b27
-
cpe:2.3:o:dlink:dsr-1000n_firmware:1.03b36
-
cpe:2.3:o:dlink:dsr-1000n_firmware:1.03b43
-
cpe:2.3:o:dlink:dsr-1000n_firmware:1.04b58
-
cpe:2.3:o:dlink:dsr-1000n_firmware:1.06b43
-
cpe:2.3:o:dlink:dsr-1000n_firmware:1.06b53
-
cpe:2.3:o:dlink:dsr-1000n_firmware:1.08b51
-
cpe:2.3:o:dlink:dsr-1000n_firmware:1.08b77
-
cpe:2.3:o:dlink:dsr-1000n_firmware:2.11b201
-
cpe:2.3:o:dlink:dsr-1000n_firmware:3.17
-
cpe:2.3:o:dlink:dsr-150_firmware:1.0.9b32
-
cpe:2.3:o:dlink:dsr-150_firmware:1.05b29
-
cpe:2.3:o:dlink:dsr-150_firmware:1.05b35
-
cpe:2.3:o:dlink:dsr-150_firmware:1.05b46
-
cpe:2.3:o:dlink:dsr-150_firmware:1.05b50
-
cpe:2.3:o:dlink:dsr-150_firmware:1.08
-
cpe:2.3:o:dlink:dsr-150_firmware:1.08b29
-
cpe:2.3:o:dlink:dsr-150_firmware:1.08b44
-
cpe:2.3:o:dlink:dsr-150_firmware:3.11
-
cpe:2.3:o:dlink:dsr-150_firmware:3.12
-
cpe:2.3:o:dlink:dsr-150_firmware:3.14
-
cpe:2.3:o:dlink:dsr-150_firmware:3.17
-
cpe:2.3:o:dlink:dsr-150n_firmware:01.07.2016
-
cpe:2.3:o:dlink:dsr-150n_firmware:1.05b48
-
cpe:2.3:o:dlink:dsr-150n_firmware:1.05b64
-
cpe:2.3:o:dlink:dsr-150n_firmware:3.17
-
cpe:2.3:o:dlink:dsr-250_firmware:1.01b46
-
cpe:2.3:o:dlink:dsr-250_firmware:1.01b56
-
cpe:2.3:o:dlink:dsr-250_firmware:1.05b20
-
cpe:2.3:o:dlink:dsr-250_firmware:1.05b53
-
cpe:2.3:o:dlink:dsr-250_firmware:1.08b31
-
cpe:2.3:o:dlink:dsr-250_firmware:1.08b39
-
cpe:2.3:o:dlink:dsr-250_firmware:1.08b44
-
cpe:2.3:o:dlink:dsr-250_firmware:1.09b32
-
cpe:2.3:o:dlink:dsr-250_firmware:2.11
-
cpe:2.3:o:dlink:dsr-250_firmware:3.11b101h
-
cpe:2.3:o:dlink:dsr-250_firmware:3.12
-
cpe:2.3:o:dlink:dsr-250_firmware:3.13_ww
-
cpe:2.3:o:dlink:dsr-250_firmware:3.14
-
cpe:2.3:o:dlink:dsr-250_firmware:3.17
-
cpe:2.3:o:dlink:dsr-250n_firmware:1.01b46
-
cpe:2.3:o:dlink:dsr-250n_firmware:1.01b56
-
cpe:2.3:o:dlink:dsr-250n_firmware:1.05b20
-
cpe:2.3:o:dlink:dsr-250n_firmware:1.05b53
-
cpe:2.3:o:dlink:dsr-250n_firmware:1.05b73_ww
-
cpe:2.3:o:dlink:dsr-250n_firmware:1.08b31
-
cpe:2.3:o:dlink:dsr-250n_firmware:1.08b39
-
cpe:2.3:o:dlink:dsr-250n_firmware:1.08b44
-
cpe:2.3:o:dlink:dsr-250n_firmware:3.11
-
cpe:2.3:o:dlink:dsr-250n_firmware:3.12_ww
-
cpe:2.3:o:dlink:dsr-250n_firmware:3.13_ww
-
cpe:2.3:o:dlink:dsr-250n_firmware:3.14
-
cpe:2.3:o:dlink:dsr-250n_firmware:3.17
-
cpe:2.3:o:dlink:dsr-500_firmware:1.02b11
-
cpe:2.3:o:dlink:dsr-500_firmware:1.02b25
-
cpe:2.3:o:dlink:dsr-500_firmware:1.03b12
-
cpe:2.3:o:dlink:dsr-500_firmware:1.03b23
-
cpe:2.3:o:dlink:dsr-500_firmware:1.03b27
-
cpe:2.3:o:dlink:dsr-500_firmware:1.03b36
-
cpe:2.3:o:dlink:dsr-500_firmware:1.03b43
-
cpe:2.3:o:dlink:dsr-500_firmware:1.04b58
-
cpe:2.3:o:dlink:dsr-500_firmware:1.06b43
-
cpe:2.3:o:dlink:dsr-500_firmware:1.06b53
-
cpe:2.3:o:dlink:dsr-500_firmware:1.08b51
-
cpe:2.3:o:dlink:dsr-500_firmware:1.08b77
-
cpe:2.3:o:dlink:dsr-500_firmware:2.12
-
cpe:2.3:o:dlink:dsr-500_firmware:3.13
-
cpe:2.3:o:dlink:dsr-500_firmware:3.17
-
cpe:2.3:o:dlink:dsr-500ac_firmware:3.17
-
cpe:2.3:o:dlink:dsr-500n_firmware:1.02
-
cpe:2.3:o:dlink:dsr-500n_firmware:1.02b11
-
cpe:2.3:o:dlink:dsr-500n_firmware:1.02b25
-
cpe:2.3:o:dlink:dsr-500n_firmware:1.03b12
-
cpe:2.3:o:dlink:dsr-500n_firmware:1.03b23
-
cpe:2.3:o:dlink:dsr-500n_firmware:1.03b27
-
cpe:2.3:o:dlink:dsr-500n_firmware:1.03b36
-
cpe:2.3:o:dlink:dsr-500n_firmware:1.03b43
-
cpe:2.3:o:dlink:dsr-500n_firmware:1.04b58
-
cpe:2.3:o:dlink:dsr-500n_firmware:1.06b43
-
cpe:2.3:o:dlink:dsr-500n_firmware:1.06b53
-
cpe:2.3:o:dlink:dsr-500n_firmware:1.08b51
-
cpe:2.3:o:dlink:dsr-500n_firmware:1.08b77
-
cpe:2.3:o:dlink:dsr-500n_firmware:2.11b201c
-
cpe:2.3:o:dlink:dsr-500n_firmware:2.12
-
cpe:2.3:o:dlink:dsr-500n_firmware:2.13