CVE-2019-17353
Summary
| CVE | CVE-2019-17353 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-10-09 12:15:00 UTC |
| Updated | 2021-04-23 16:56:00 UTC |
| Description | An issue discovered on D-Link DIR-615 devices with firmware version 20.05 and 20.07. wan.htm can be accessed directly without authentication, which can lead to disclosure of information about the WAN, and can also be leveraged by an attacker to modify the data fields of the page. |
Risk And Classification
Problem Types: CWE-306
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Dlink | Dir-615 | - | All | All | All |
| Hardware | Dlink | Dir-615 | - | All | All | All |
| Operating System | Dlink | Dir-615 Firmware | 20.05 | All | All | All |
| Operating System | Dlink | Dir-615 Firmware | 20.07 | All | All | All |
| Operating System | Dlink | Dir-615 Firmware | 20.05 | All | All | All |
| Operating System | Dlink | Dir-615 Firmware | 20.07 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| D-Link-DIR-615/CVE-2019-17353 at master · d0x0/D-Link-DIR-615 · GitHub | MISC | github.com | Third Party Advisory |
| Security Advisory | D-Link | MISC | us.dlink.com | Vendor Advisory |
| www.ftc.gov/system/files/documents/cases/dlink_proposed_order_and_judgmen... | MISC | www.ftc.gov | Third Party Advisory, US Government Resource |
| Security Bulletin | D-Link | MISC | www.dlink.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.