CVE-2013-4772

CWE-287 — Improper Authentication3 documents3 sources

Severity

9.3CRITICAL

EPSS

0.1%

top 65.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Dlink Dir-505l Shareport Mobile Companion Dlink Dir-505l Shareport Mobile Companion Firmware Dlink Dir-826l Wireless N600 Cloud Router +1 more

Timeline

PublishedMay 12

Latest updateMay 17

Description

D-Link DIR-505L SharePort Mobile Companion 1.01 and DIR-826L Wireless N600 Cloud Router 1.02 allows remote attackers to bypass authentication via a direct request when an authorized session is active.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages4 packages

▶NVDdlink/dir-826l_wireless_n600_cloud_routera1

▶NVDdlink/dir-826l_wireless_n600_cloud_router_firmware1.02

▶NVDdlink/dir-505l_shareport_mobile_companiona1

▶NVDdlink/dir-505l_shareport_mobile_companion_firmware1.01

🔴Vulnerability Details

GHSA

GHSA-x69c-mg5c-f526: D-Link DIR-505L SharePort Mobile Companion 1↗2022-05-17

▶

CVEList

CVE-2013-4772: D-Link DIR-505L SharePort Mobile Companion 1↗2014-05-12

▶