Overview
- Description
- The D-Link DSL6740C modem has a Path Traversal Vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files. Additionally, since the device's default password is a combination of the MAC address, attackers can obtain the MAC address through this vulnerability and attempt to log in to the device using the default password.
- Source
- twcert@cert.org.tw
- NVD status
- Analyzed
- CNA Tags
- unsupported-when-assigned
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Severity
- HIGH
Weaknesses
- twcert@cert.org.tw
- CWE-23
Social media
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
1
🚨 CVE-2024-11067 (Published: 2024-11-11) affects multiple versions of a critical product. Users are urged to update to the latest version immediately to mitigate potential exploits. For detailed remediation steps, visit: https://t.co/DHK0IUjQGv #CyberSecurity #CVE
@transilienceai
15 Nov 2024
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨🚨D-Link DSL-6740C Modem Exposed to Multiple Security Vulnerabilities CVE-2024-11068 (CVSS 9.8): Incorrect Use of Privileged APIs CVE-2024-11067 (CVSS 7.5): Arbitrary File Reading through Path Traversal CVE-2024-11062, 11063, 11064, 11065 , 11066(CVSS 7.2): OS Command Injection
@zoomeye_team
12 Nov 2024
386 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-11067 Path Traversal Vulnerability in D-Link DSL6740C Allows Remote Exploits The D-Link DSL6740C modem has a problem called Path Traversal Vulnerability. Bad people can take advantage of this to read any... https://t.co/VTiuExqmVw
@VulmonFeeds
11 Nov 2024
34 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-11067 The D-Link DSL6740C modem has a Path Traversal Vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files. … https://t.co/ZJ0fOw4KUN
@CVEnew
11 Nov 2024
568 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:dlink:dsl6740c_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "702B0914-7B3E-4797-9D28-C1C680EC6668"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:dlink:dsl6740c:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "04466F44-FDB1-4ABF-84F1-C88CC175BCB9"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]