CVE-2021-41504
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An Elevated Privileges issue exists in D-Link DCS-5000L v1.05 and DCS-932L v2.17 and older. The use of the digest-authentication for the devices command interface may allow further attack vectors that may compromise the cameras configuration and allow malicious users on the LAN to access the device. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
Un problema de privilegios elevados se presenta en D-Link DCS-5000L versión v1.05 y DCS-932L versión v2.17 y anteriores. El uso de la autenticación digest para la interfaz de comandos de los dispositivos puede permitir otros vectores de ataque que pueden comprometer la configuración de las cámaras y permitir que usuarios maliciosos en la LAN accedan al dispositivo. NOTA: Esta vulnerabilidad sólo afecta a los productos que ya no son soportados por el mantenedor.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-09-20 CVE Reserved
- 2021-09-24 CVE Published
- 2023-04-17 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (2)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10247 | 2024-05-17 | |
https://www.dlink.com/en/security-bulletin | 2024-05-17 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Dlink Search vendor "Dlink" | Dcs-932l Firmware Search vendor "Dlink" for product "Dcs-932l Firmware" | <= 2.17 Search vendor "Dlink" for product "Dcs-932l Firmware" and version " <= 2.17" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dcs-932l Search vendor "Dlink" for product "Dcs-932l" | - | - |
Safe
|
Dlink Search vendor "Dlink" | Dcs-5000l Firmware Search vendor "Dlink" for product "Dcs-5000l Firmware" | 1.05 Search vendor "Dlink" for product "Dcs-5000l Firmware" and version "1.05" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dcs-5000l Search vendor "Dlink" for product "Dcs-5000l" | - | - |
Safe
|