CVE-2019-18852 — Cleartext Transmission of Sensitive Info in Dlink Dir-890l A1 Firmware

CWE-319 — Cleartext Transmission of Sensitive Info3 documents3 sources

Severity

9.8CRITICALNVD

EPSS

0.5%

top 33.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Dlink Dir-600 B1 Firmware Dlink Dir-615 J1 Firmware Dlink Dir-645 A1 Firmware +4 more

Timeline

PublishedNov 11

Latest updateMay 24

Description

Certain D-Link devices have a hardcoded Alphanetworks user account with TELNET access because of /etc/config/image_sign or /etc/alpha_config/image_sign. This affects DIR-600 B1 V2.01 for WW, DIR-890L A1 v1.03, DIR-615 J1 v100 (for DCN), DIR-645 A1 v1.03, DIR-815 A1 v1.01, DIR-823 A1 v1.01, and DIR-842 C1 v3.00.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages7 packages

▶NVDdlink/dir-890l_a1_firmware1.03

▶NVDdlink/dir-600_b1_firmware2.01

▶NVDdlink/dir-615_j1_firmware100

▶NVDdlink/dir-645_a1_firmware1.03

▶NVDdlink/dir-815_a1_firmware1.01

🔴Vulnerability Details

GHSA

GHSA-mpx6-w79q-h86g: Certain D-Link devices have a hardcoded Alphanetworks user account with TELNET access because of /etc/config/image_sign or /etc/alpha_config/image_sig↗2022-05-24

▶

CVEList

CVE-2019-18852: Certain D-Link devices have a hardcoded Alphanetworks user account with TELNET access because of /etc/config/image_sign or /etc/alpha_config/image_sig↗2019-11-11

▶