CVE-2019-16190

CWE-287Improper Authentication3 documents3 sources
Severity
9.8CRITICAL
EPSS
0.9%
top 24.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Dlink Dir-868l FirmwareDlink Dir-885l FirmwareDlink Dir-895l Firmware
Timeline
PublishedSep 9
Latest updateMay 24

Description

SharePort Web Access on D-Link DIR-868L REVB through 2.03, DIR-885L REVA through 1.20, and DIR-895L REVA through 1.21 devices allows Authentication Bypass, as demonstrated by a direct request to folder_view.php or category_view.php.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages3 packages

🔴Vulnerability Details

2
GHSA
GHSA-65w6-j2xm-7x4c: SharePort Web Access on D-Link DIR-868L REVB through 22022-05-24
CVEList
CVE-2019-16190: SharePort Web Access on D-Link DIR-868L REVB through 22019-09-09