CVE-2021-34203
Last modified
CVE-2021-34203 is a high-severity vulnerability rated 8.1/10 on the CVSS scale. D-Link DIR-2640-US 1.01B04 is vulnerable to Incorrect Access Control. Router ac2600 (dir-2640-us), when setting PPPoE, will start quagga process in the way of whole network monitoring, and this function uses the original default password and port. EPSS estimates a 1.63% chance of exploitation in the next 30 days.
Description
D-Link DIR-2640-US 1.01B04 is vulnerable to Incorrect Access Control. Router ac2600 (dir-2640-us), when setting PPPoE, will start quagga process in the way of whole network monitoring, and this function uses the original default password and port. An attacker can easily use telnet to log in, modify routing information, monitor the traffic of all devices under the router, hijack DNS and phishing attacks. In addition, this interface is likely to be questioned by customers as a backdoor, because the interface should not be exposed.
Metrics
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Dlink | Dir-2640-Us Firmware | 1.01b04 |
References
- http://d-link.comVendor Advisory
- http://dir-2640-us.comBroken Link, URL Repurposed
- https://github.com/liyansong2018/CVE/tree/main/2021/CVE-2021-34203Exploit, Third Party Advisory
- https://www.dlink.com/en/security-bulletin/Vendor Advisory
- http://d-link.comVendor Advisory
- http://dir-2640-us.comBroken Link, URL Repurposed
- https://github.com/liyansong2018/CVE/tree/main/2021/CVE-2021-34203Exploit, Third Party Advisory
- https://www.dlink.com/en/security-bulletin/Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-34203?
How severe is CVE-2021-34203?
How do I fix CVE-2021-34203?
Are you affected by CVE-2021-34203?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST