CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-27342

An authentication brute-force protection mechanism bypass in telnetd in D-Link Router model DIR-842 firmware version 3.0.2 allows a remote attacker to circumvent the anti-brute-force cool-down delay period via a timing-based side-channel attack

Exploit prediction scoring system (EPSS) score

EPSS Score 0.09

EPSS Ranking 92.2%

CVSS Severity

CVSS v3 Score 5.9

CVSS v2 Score 4.3

References

https://blog.whtaguy.com/2021/05/d-link-router-cve-2021-27342.html
https://github.com/guywhataguy/D-Link-CVE-2021-27342-exploit/blob/main/dlink-telnet-exploit-CVE-2021-27342.py
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10225
https://blog.whtaguy.com/2021/05/d-link-router-cve-2021-27342.html
https://github.com/guywhataguy/D-Link-CVE-2021-27342-exploit/blob/main/dlink-telnet-exploit-CVE-2021-27342.py
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10225

Products affected by CVE-2021-27342

Dlink » Dir-842e » Version: r1

cpe:2.3:h:dlink:dir-842e:r1
Dlink » Dir-842e Firmware » Version: N/A

cpe:2.3:o:dlink:dir-842e_firmware:-
Dlink » Dir-842e Firmware » Version: 3.0.2

cpe:2.3:o:dlink:dir-842e_firmware:3.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-27342

Products

Pricing

Contact Us