CVE-2019-18852

Name: CVE-2019-18852
Creator: NVD / NIST
Published: 2019-11-11T14:15:10.697+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

CRITICALCVSS 9.8/10EPSS 1.54%

Last modified Jun 17, 2026

CVE-2019-18852 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Certain D-Link devices have a hardcoded Alphanetworks user account with TELNET access because of /etc/config/image_sign or /etc/alpha_config/image_sign. This affects DIR-600 B1 V2.01 for WW, DIR-890L A1 v1.03, DIR-615 J1 v100 (for DCN), DIR-645 A1 v1.03, DIR-815 A1 v1.01, DIR-823 A1 v1.01, and DIR-842 C1 v3.00.. EPSS estimates a 1.54% chance of exploitation in the next 30 days.

Description

Certain D-Link devices have a hardcoded Alphanetworks user account with TELNET access because of /etc/config/image_sign or /etc/alpha_config/image_sign. This affects DIR-600 B1 V2.01 for WW, DIR-890L A1 v1.03, DIR-615 J1 v100 (for DCN), DIR-645 A1 v1.03, DIR-815 A1 v1.01, DIR-823 A1 v1.01, and DIR-842 C1 v3.00.

Metrics

CVSS 3.1

9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

1.54%

71.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-319

Affected Software

Vendor	Product	Versions
Dlink	Dir-600 B1 Firmware	2.01
Dlink	Dir-615 J1 Firmware	100
Dlink	Dir-645 A1 Firmware	1.03
Dlink	Dir-815 A1 Firmware	1.01
Dlink	Dir-823 A1 Firmware	1.01
Dlink	Dir-842 C1 Firmware	3.00
Dlink	Dir-890l A1 Firmware	1.03

References

https://github.com/ChandlerChin/Dlink_vuls/blob/master/A%20hard%20coded%20telnet%20user%20was%20discovered%20in%20multiple%20Dlink%20routers.pdfExploit, Third Party Advisory
https://github.com/ChandlerChin/Dlink_vuls/blob/master/A%20hard%20coded%20telnet%20user%20was%20discovered%20in%20multiple%20Dlink%20routers.pdfExploit, Third Party Advisory

Timeline

Published: Nov 11, 2019
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2019-18852?

How severe is CVE-2019-18852?

CVE-2019-18852 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 1.54% probability of exploitation in the next 30 days.

How do I fix CVE-2019-18852?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-18852?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST