9.8
CVE-2021-42627
- EPSS 49.71%
- Published 23.08.2022 12:15:08
- Last modified 21.11.2024 06:27:52
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
The WAN configuration page "wan.htm" on D-Link DIR-615 devices with firmware 20.06 can be accessed directly without authentication which can lead to disclose the information about WAN settings and also leverage attacker to modify the data fields of page.
Data is provided by the National Vulnerability Database (NVD)
Dlink ≫ Dir-615 Firmware Version20.06
Dlink ≫ Dir-615 J1 Firmware Version20.06
Dlink ≫ Dir-615 T1 Firmware Version20.06
Dlink ≫ Dir-615jx10 Firmware Version20.06
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 49.71% | 0.978 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|