Dlink

Covr-2600r Firmware

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.7

CVE-2024-44674

Exploit
  • EPSS 0.08%
  • Published 07.10.2024 18:15:04
  • Last modified 21.05.2025 14:51:38

D-Link COVR-2600R FW101b05 is vulnerable to Buffer Overflow. In the function sub_24E28, the HTTP_REFERER is obtained through an environment variable, and this field is controllable, allowing it to be used as the value for src.

10

CVE-2018-20432

Exploit
  • EPSS 16.53%
  • Published 14.09.2020 14:15:10
  • Last modified 21.11.2024 04:01:28

D-Link COVR-2600R and COVR-3902 Kit before 1.01b05Beta01 use hardcoded credentials for telnet connection, which allows unauthenticated attackers to gain privileged access to the router, and to extract sensitive data or modify the configuration.