| Title | D-Link DI-7003GV2 24.04.18D1 R(68125) Exposure of Sensitive System Information to an Unauthorized Cont |
|---|
| Description | The D-Link DI-7003GV2 device exposes sensitive system and network information through the unauthenticated /H5/state_view.data HTTP endpoint. An attacker on the same network can send a crafted GET request to retrieve critical details, including device model, LAN and WAN IP addresses, MAC addresses, CPU specifications, and interface link states. |
|---|
| Source | ⚠️ https://github.com/at0de/my_vulns/blob/main/Dlink/Di-7003GV2/state_view.md |
|---|
| User | 153528990 (UID 64409) |
|---|
| Submission | 05/15/2025 13:15 (11 months ago) |
|---|
| Moderation | 05/17/2025 15:06 (2 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 309457 [D-Link DI-7003GV2 24.04.18D1 R(68125) HTTP Endpoint /H5/state_view.data sub_41E304 information disclosure] |
|---|
| Points | 19 |
|---|