CVE-2021-41503
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
DCS-5000L v1.05 and DCS-932L v2.17 and older are affecged by Incorrect Acess Control. The use of the basic authentication for the devices command interface allows attack vectors that may compromise the cameras configuration and allow malicious users on the LAN to access the device. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
DCS-5000L versión v1.05 y DCS-932L versión v2.17 y anteriores, están afectados por un Control de Acceso Incorrecto. El uso de la autenticación básica para la interfaz de comandos de los dispositivos permite vectores de ataque que pueden comprometer la configuración de las cámaras y permitir que usuarios maliciosos en la LAN accedan al dispositivo. NOTA: Esta vulnerabilidad sólo afecta a los productos que ya no son soportados por el mantenedor.
CVSS Scores
SSVC
- Decision:Track*
Timeline
- 2021-09-20 CVE Reserved
- 2021-09-24 CVE Published
- 2023-04-17 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-287: Improper Authentication
CAPEC
References (2)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10247 | 2024-07-19 | |
https://www.dlink.com/en/security-bulletin | 2024-07-19 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Dlink Search vendor "Dlink" | Dcs-932l Firmware Search vendor "Dlink" for product "Dcs-932l Firmware" | <= 2.17 Search vendor "Dlink" for product "Dcs-932l Firmware" and version " <= 2.17" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dcs-932l Search vendor "Dlink" for product "Dcs-932l" | - | - |
Safe
|
D-link Search vendor "D-link" | Dcs-5000l Firmware Search vendor "D-link" for product "Dcs-5000l Firmware" | 1.05 Search vendor "D-link" for product "Dcs-5000l Firmware" and version "1.05" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dcs-5000l Search vendor "Dlink" for product "Dcs-5000l" | - | - |
Safe
|