CVE-2020-13150Missing Authentication for Critical Function in Dlink Dsl-2750u Firmware

CWE-306Missing Authentication for Critical Function3 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.0%
top 87.19%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Dlink Dsl-2750u Firmware
Timeline
PublishedJun 15
Latest updateMay 24

Description

D-link DSL-2750U ISL2750UEME3.V1E devices allow approximately 90 seconds of access to the control panel, after a restart, before MAC address filtering rules become active.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-qg57-qh29-mjxf: D-link DSL-2750U ISL2750UEME32022-05-24
CVEList
CVE-2020-13150: D-link DSL-2750U ISL2750UEME32020-06-15
CVE-2020-13150 — Dlink Dsl-2750u Firmware vulnerability | cvebase