CVE-2014-7858
published 2017-08-25CVE-2014-7858: The check_login function in D-Link DNR-326 before 2.10 build 03 allows remote attackers to bypass authentication and log in by setting the username cookie…
critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
The check_login function in D-Link DNR-326 before 2.10 build 03 allows remote attackers to bypass authentication and log in by setting the username cookie parameter to an arbitrary string.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| d-link | dnr-326_firmware | <= 1.40b03 | — |