- Description
- The D-link router DIR-885L-MFC 1.15b02, v1.21b05 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that allows an unauthenticated attacker to gain access to the firmware and to extract sensitive data.
- Source
- disclose@cybersecurityworks.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
- nvd@nist.gov
- CWE-522
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:dlink:dir-885l-mfc_firmware:1.15b02:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3234D13D-27D9-4906-A084-49FA001071A3"
},
{
"criteria": "cpe:2.3:o:dlink:dir-885l-mfc_firmware:1.21b05:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "94868CC2-241E-40E1-BA93-6ABE6148908B"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:dlink:dir-885l-mfc:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "AEAC5C5B-B743-4BE0-89B1-E868BFCA987F"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]