CVE-2018-18442

4 documents4 sources
Severity
7.5HIGH
EPSS
1.0%
top 23.22%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
D-link Dcs-825l Firmware
Timeline
PublishedDec 20
Latest updateAug 17

Description

D-Link DCS-825L devices with firmware 1.08 do not employ a suitable mechanism to prevent denial-of-service (DoS) attacks. An attacker can harm the device availability (i.e., live-online video/audio streaming) by using the hping3 tool to perform an IPv4 flood attack. Verified attacks includes SYN flooding, UDP flooding, ICMP flooding, and SYN-ACK flooding.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

🔴Vulnerability Details

3
OSV
zziplib vulnerabilities2023-08-17
GHSA
GHSA-v92p-w44j-35xr: D-Link DCS-825L devices with firmware 12022-05-13
CVEList
CVE-2018-18442: D-Link DCS-825L devices with firmware 12018-12-20
CVE-2018-18442 (HIGH CVSS 7.5) | D-Link DCS-825L devices with firmwa | cvebase.io