1 results (0.001 seconds)

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1

An issue was discovered on D-Link DSL-2640B E1 EU_1.01 devices. The administrative interface doesn't perform authentication checks for a firmware-update POST request. Any attacker that can access the administrative interface can install firmware of their choice. Se detectó un problema en los dispositivos D-Link DSL-2640B E1 versión EU_1.01. La interfaz administrativa no realiza comprobaciones de autenticación para una petición POST de actualización de firmware. • https://ktln2.org/2020/03/05/cve-2020-9544 https://www.dlink.com/en/security-bulletin • CWE-306: Missing Authentication for Critical Function •