CVE-2018-10824
D-Link Routers - Plaintext Password
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
3Exploited in Wild
-Decision
Descriptions
An issue was discovered on D-Link DWR-116 through 1.06, DIR-140L through 1.02, DIR-640L through 1.02, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. The administrative password is stored in plaintext in the /tmp/csman/0 file. An attacker having a directory traversal (or LFI) can easily get full router access.
Se ha descubierto un problema en dispositivos D-Link DWR-116 hasta la versión 1.06, DIR-140L hasta la versión 1.02, DWR-512 hasta la versión 2.02, DWR-712 hasta la versión 2.02, DWR-912 hasta la versión 2.02, DWR-921 hasta la versión 2.02 y DWR-111 hasta la versión 1.01. La contraseña administrativa se almacena en texto plano en el archivo /tmp/csman/0. Un atacante que tenga un salto de directorio (o LFI) puede obtener fácilmente el acceso total al router.
Multiple D-Link router models suffer from code execution, plain-text password storage, and directory traversal vulnerabilities.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2018-05-08 CVE Reserved
- 2018-10-12 First Exploit
- 2018-10-17 CVE Published
- 2024-08-05 CVE Updated
- 2024-09-26 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
- CWE-522: Insufficiently Protected Credentials
CAPEC
References (3)
URL | Tag | Source |
---|
URL | Date | SRC |
---|---|---|
https://www.exploit-db.com/exploits/45677 | 2018-10-12 | |
http://sploit.tech/2018/10/12/D-Link.html | 2024-08-05 | |
https://seclists.org/fulldisclosure/2018/Oct/36 | 2024-08-05 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Dlink Search vendor "Dlink" | Dwr-116 Firmware Search vendor "Dlink" for product "Dwr-116 Firmware" | <= 1.06 Search vendor "Dlink" for product "Dwr-116 Firmware" and version " <= 1.06" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dwr-116 Search vendor "Dlink" for product "Dwr-116" | - | - |
Safe
|
Dlink Search vendor "Dlink" | Dir-140l Firmware Search vendor "Dlink" for product "Dir-140l Firmware" | <= 1.02 Search vendor "Dlink" for product "Dir-140l Firmware" and version " <= 1.02" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-140l Search vendor "Dlink" for product "Dir-140l" | - | - |
Safe
|
Dlink Search vendor "Dlink" | Dir-640l Firmware Search vendor "Dlink" for product "Dir-640l Firmware" | <= 1.02 Search vendor "Dlink" for product "Dir-640l Firmware" and version " <= 1.02" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-640l Search vendor "Dlink" for product "Dir-640l" | - | - |
Safe
|
Dlink Search vendor "Dlink" | Dwr-512 Firmware Search vendor "Dlink" for product "Dwr-512 Firmware" | <= 2.02 Search vendor "Dlink" for product "Dwr-512 Firmware" and version " <= 2.02" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dwr-512 Search vendor "Dlink" for product "Dwr-512" | - | - |
Safe
|
Dlink Search vendor "Dlink" | Dwr-712 Firmware Search vendor "Dlink" for product "Dwr-712 Firmware" | <= 2.02 Search vendor "Dlink" for product "Dwr-712 Firmware" and version " <= 2.02" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dwr-712 Search vendor "Dlink" for product "Dwr-712" | - | - |
Safe
|
Dlink Search vendor "Dlink" | Dwr-912 Firmware Search vendor "Dlink" for product "Dwr-912 Firmware" | <= 2.02 Search vendor "Dlink" for product "Dwr-912 Firmware" and version " <= 2.02" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dwr-921 Search vendor "Dlink" for product "Dwr-921" | - | - |
Safe
|
Dlink Search vendor "Dlink" | Dwr-921 Firmware Search vendor "Dlink" for product "Dwr-921 Firmware" | <= 2.02 Search vendor "Dlink" for product "Dwr-921 Firmware" and version " <= 2.02" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dwr-921 Search vendor "Dlink" for product "Dwr-921" | - | - |
Safe
|
Dlink Search vendor "Dlink" | Dwr-111 Firmware Search vendor "Dlink" for product "Dwr-111 Firmware" | <= 1.01 Search vendor "Dlink" for product "Dwr-111 Firmware" and version " <= 1.01" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dwr-111 Search vendor "Dlink" for product "Dwr-111" | - | - |
Safe
|