CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-9376

D-Link DIR-610 devices allow Information Disclosure via SERVICES=DEVICE.ACCOUNT%0AAUTHORIZED_GROUP=1 to getcfg.php. NOTE: This vulnerability only affects products that are no longer supported by the maintainer

Exploit prediction scoring system (EPSS) score

EPSS Score 0.925

EPSS Ranking 99.7%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://gist.github.com/GouveaHeitor/dcbb67b301cc45adc00f8a6a2a0a590f
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10182
https://www.dlink.com.br/produto/dir-610/
https://gist.github.com/GouveaHeitor/dcbb67b301cc45adc00f8a6a2a0a590f
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10182
https://www.dlink.com.br/produto/dir-610/

Products affected by CVE-2020-9376

Dlink » Dir-610 » Version: N/A

cpe:2.3:h:dlink:dir-610:-
Dlink » Dir-610 Firmware » Version: N/A

cpe:2.3:o:dlink:dir-610_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9376

Products

Pricing

Contact Us