CVE-2020-15892

CWE-669 CWE-787 — Out-of-bounds Write CWE-120 — Classic Buffer Overflow3 documents3 sources

Severity

9.8CRITICAL

EPSS

0.9%

top 24.03%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Dlink Dap-1520 Firmware

Timeline

PublishedJul 22

Latest updateMay 24

Description

An issue was discovered in apply.cgi on D-Link DAP-1520 devices before 1.10b04Beta02. Whenever a user performs a login action from the web interface, the request values are being forwarded to the ssi binary. On the login page, the web interface restricts the password input field to a fixed length of 15 characters. The problem is that validation is being done on the client side, hence it can be bypassed. When an attacker manages to intercept the login request (POST based) and tampers with the vul…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

▶NVDdlink/dap-1520_firmware1.10b04

Patches

Patch: supportannouncement.us.dlink.com ↗Patch: supportannouncement.us.dlink.com ↗

🔴Vulnerability Details

GHSA

GHSA-mh3c-hpgm-9fqj: An issue was discovered in apply↗2022-05-24

▶

CVEList

CVE-2020-15892: An issue was discovered in apply↗2020-07-22

▶