CVE-2021-42627
Last modified
CVE-2021-42627 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. The WAN configuration page "wan.htm" on D-Link DIR-615 devices with firmware 20.06 can be accessed directly without authentication which can lead to disclose the information about WAN settings and also leverage attacker to modify the data fields of page.. EPSS estimates a 67.44% chance of exploitation in the next 30 days.
Description
The WAN configuration page "wan.htm" on D-Link DIR-615 devices with firmware 20.06 can be accessed directly without authentication which can lead to disclose the information about WAN settings and also leverage attacker to modify the data fields of page.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Dlink | Dir-615 Firmware | 20.06 |
| Dlink | Dir-615 J1 Firmware | 20.06 |
| Dlink | Dir-615 T1 Firmware | 20.06 |
| Dlink | Dir-615jx10 Firmware | 20.06 |
References
- http://d-link.comBroken Link
- http://dlink.comProduct
- https://github.com/sanjokkarki/D-Link-DIR-615/blob/main/CVE-2021-42627Third Party Advisory
- https://www.dlink.com/en/security-bulletin/Vendor Advisory
- http://d-link.comBroken Link
- http://dlink.comProduct
- https://github.com/sanjokkarki/D-Link-DIR-615/blob/main/CVE-2021-42627Third Party Advisory
- https://www.dlink.com/en/security-bulletin/Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-42627?
How severe is CVE-2021-42627?
How do I fix CVE-2021-42627?
Are you affected by CVE-2021-42627?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST