CVE-2002-1069 — D-link Di-804 vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.6%

top 29.85%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

D-link Di-804

Timeline

PublishedOct 4

Latest updateApr 30

Description

The remote administration capability for the D-Link DI-804 router 4.68 allows remote attackers to bypass authentication and release DHCP addresses or obtain sensitive information via a direct web request to the pages (1) release.htm, (2) Device Status, or (3) Device Information.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDd-link/di-8044.68

Patches

Patch: www.iss.net ↗Patch: www.iss.net ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-h6ww-h946-vcvp: The remote administration capability for the D-Link DI-804 router 4↗2022-04-30

▶

CVEList

CVE-2002-1069: The remote administration capability for the D-Link DI-804 router 4↗2002-08-31

▶