D-link Dir-300 漏洞

时间轴

版本

2.136
2.14b016
1.055
1.2.02
1.2.12

修正

Official Fix12
Temporary Fix0
Workaround0
Unavailable2
Not Defined3

易受攻击性

High1
Functional0
Proof-of-Concept14
Unproven0
Not Defined2

访问向量

Not Defined0
Physical0
Local1
Adjacent1
Network15

身份验证

Not Defined0
High0
Low6
None11

用户交互

Not Defined0
Required5
None12

C3BM Index

去年

CVSSv3 Base

≤10
≤20
≤30
≤41
≤51
≤66
≤73
≤82
≤93
≤101

CVSSv3 Temp

≤10
≤20
≤30
≤42
≤56
≤61
≤73
≤83
≤92
≤100

VulDB

≤10
≤20
≤30
≤41
≤51
≤67
≤73
≤82
≤92
≤101

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤102

CNA

≤10
≤20
≤30
≤40
≤50
≤61
≤70
≤80
≤90
≤100

供应商

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

零日攻击

<1k0
<2k0
<5k0
<10k3
<25k13
<50k1
<100k0
≥100k0

本日攻击

<1k13
<2k2
<5k1
<10k1
<25k0
<50k0
<100k0
≥100k0

攻击市场容量

去年

🔴 CTI 活动

Affected Versions (92): 1.05, 1.2, 1.2.1, 1.2.2, 1.2.3, 1.2.4, 1.2.5, 1.2.6, 1.2.7, 1.2.8, 1.2.9, 1.2.11, 1.2.12, 1.2.13, 1.2.14, 1.2.15, 1.2.16, 1.2.17, 1.2.18, 1.2.19, 1.2.21, 1.2.22, 1.2.23, 1.2.24, 1.2.25, 1.2.26, 1.2.27, 1.2.28, 1.2.29, 1.2.31, 1.2.32, 1.2.33, 1.2.34, 1.2.35, 1.2.36, 1.2.37, 1.2.38, 1.2.39, 1.2.41, 1.2.42, 1.2.43, 1.2.44, 1.2.45, 1.2.46, 1.2.47, 1.2.48, 1.2.49, 1.2.51, 1.2.52, 1.2.53, 1.2.54, 1.2.55, 1.2.56, 1.2.57, 1.2.58, 1.2.59, 1.2.61, 1.2.62, 1.2.63, 1.2.64, 1.2.65, 1.2.66, 1.2.67, 1.2.68, 1.2.69, 1.2.71, 1.2.72, 1.2.73, 1.2.74, 1.2.75, 1.2.76, 1.2.77, 1.2.78, 1.2.79, 1.2.81, 1.2.82, 1.2.83, 1.2.84, 1.2.85, 1.2.86, 1.2.87, 1.2.88, 1.2.89, 1.2.91, 1.2.92, 1.2.93, 1.2.94, 2.13, 2.14b01, 20240112, REVA1.06, REVB2.06

Link to Product Website: https://www.dlink.com/

软件类型: Router Operating System

已发布BaseTemp漏洞0day今天修正CTICVE
2024-01-195.35.0D-Link Good Line Router v2 HTTP GET Request devinfo 信息公开$5k-$25k$0-$5kProof-of-ConceptNot Defined0.15CVE-2024-0717
2023-05-237.67.5D-Link DIR-300 firmware __lang_msg.php 权限升级$5k-$25k$5k-$25kNot DefinedNot Defined0.02CVE-2023-31814
2019-06-118.58.4D-Link DIR-300/DIR-600/DIR-645/DIR-845/DIR-865 权限升级$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2013-7471
2016-10-316.35.7D-Link DIR-300 index.cgi 跨网站请求伪造$5k-$25k$0-$5kProof-of-ConceptUnavailable0.04
2016-10-316.36.1D-Link DIR-300 弱身份验证$5k-$25k$0-$5kNot DefinedUnavailable0.00
2013-04-228.87.9D-Link DIR-300 tools_vct.xgi 跨网站脚本$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00
2013-04-228.87.9D-Link DIR-300 tools_system.xgi 跨网站脚本$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00
2013-04-225.34.8D-Link DIR-300 Authorization DevInfo.txt 弱身份验证$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.06
2013-04-225.34.8D-Link DIR-300 HTTP Header tools_vct.xgi 竞争条件$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.05
2013-04-225.44.9D-Link DIR-300 tools_log_setting.php 跨网站脚本$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.06

7 更多条目未显示

🔒 Login Required

You need to signup and login to see more of the remaining 7 results.

更多条目由 D-link

上一步一览下一步

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!