Podatność CVE-2024-45696


Publikacja: 2024-09-16

Opis:
Certain models of D-Link wireless routers contain hidden functionality. By sending specific packets to the web service, the attacker can forcibly enable the telnet service and log in using hard-coded credentials. The telnet service enabled through this method can only be accessed from within the same local network as the device.

Typ:

CWE-912

 Referencje:
https://www.twcert.org.tw/tw/cp-132-8086-93ed5-1.html
https://www.twcert.org.tw/en/cp-139-8087-c3e70-2.html

Copyright 2024, cxsecurity.com

 

Back to Top