CVE-2024-0717
D-Link Good Line Router v2 HTTP GET Request devinfo information disclosure
Severity Score
5.3
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815, DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR-843, DIR-853, DIR-878, DIR-882, DIR-1210, DIR-1260, DIR-2150, DIR-X1530, DIR-X1860, DSL-224, DSL-245GR, DSL-2640U, DSL-2750U, DSL-G2452GR, DVG-5402G, DVG-5402G, DVG-5402GFRU, DVG-N5402G, DVG-N5402G-IL, DWM-312W, DWM-321, DWR-921, DWR-953 and Good Line Router v2 up to 20240112. This vulnerability affects unknown code of the file /devinfo of the component HTTP GET Request Handler. The manipulation of the argument area with the input notice|net|version leads to information disclosure. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-251542 is the identifier assigned to this vulnerability.
Una vulnerabilidad fue encontrada en D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815 y clasificada como crítica , DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR -843, DIR-853, DIR-878, DIR-882, DIR-1210, DIR-1260, DIR-2150, DIR-X1530, DIR-X1860, DSL-224, DSL-245GR, DSL-2640U, DSL-2750U , DSL-G2452GR, DVG-5402G, DVG-5402G, DVG-5402GFRU, DVG-N5402G, DVG-N5402G-IL, DWM-312W, DWM-321, DWR-921, DWR-953 y Good Line Router v2 hasta 20240112 Esta vulnerabilidad afecta a código desconocido del archivo /devinfo del componente HTTP GET Request Handler. La manipulación del área de argumentos con la entrada aviso|net|versión conduce a la divulgación de información. El ataque se puede iniciar de forma remota. El exploit ha sido divulgado al público y puede utilizarse. VDB-251542 es el identificador asignado a esta vulnerabilidad.
In D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815, DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR-843, DIR-853, DIR-878, DIR-882, DIR-1210, DIR-1260, DIR-2150, DIR-X1530, DIR-X1860, DSL-224, DSL-245GR, DSL-2640U, DSL-2750U, DSL-G2452GR, DVG-5402G, DVG-5402G, DVG-5402GFRU, DVG-N5402G, DVG-N5402G-IL, DWM-312W, DWM-321, DWR-921, DWR-953 and Good Line Router v2 bis 20240112 wurde eine Schwachstelle entdeckt. Sie wurde als kritisch eingestuft. Betroffen ist eine unbekannte Verarbeitung der Datei /devinfo der Komponente HTTP GET Request Handler. Mittels dem Manipulieren des Arguments area mit der Eingabe notice|net|version mit unbekannten Daten kann eine information disclosure-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk passieren. Der Exploit steht zur öffentlichen Verfügung.
*Credits:
99iz
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-01-19 CVE Reserved
- 2024-01-19 CVE Published
- 2024-01-26 EPSS Updated
- 2024-08-01 CVE Updated
- 2024-08-01 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://vuldb.com/?id.251542 | Technical Description |
| URL | Date | SRC |
|---|---|---|
| https://github.com/999zzzzz/D-Link | 2024-08-01 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Dlink Search vendor "Dlink" | Dir-825acg1 Firmware Search vendor "Dlink" for product "Dir-825acg1 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-825acg1 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-825acg1 Search vendor "Dlink" for product "Dir-825acg1" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-841 Firmware Search vendor "Dlink" for product "Dir-841 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-841 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-841 Search vendor "Dlink" for product "Dir-841" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-1260 Firmware Search vendor "Dlink" for product "Dir-1260 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-1260 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-1260 Search vendor "Dlink" for product "Dir-1260" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-822 Firmware Search vendor "Dlink" for product "Dir-822 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-822 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-822 Search vendor "Dlink" for product "Dir-822" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-x1530 Firmware Search vendor "Dlink" for product "Dir-x1530 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-x1530 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-x1530 Search vendor "Dlink" for product "Dir-x1530" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-825 Firmware Search vendor "Dlink" for product "Dir-825 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-825 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-825 Search vendor "Dlink" for product "Dir-825" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-615 Firmware Search vendor "Dlink" for product "Dir-615 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-615 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-615 Search vendor "Dlink" for product "Dir-615" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-842 Firmware Search vendor "Dlink" for product "Dir-842 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-842 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-842 Search vendor "Dlink" for product "Dir-842" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-853 Firmware Search vendor "Dlink" for product "Dir-853 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-853 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-853 Search vendor "Dlink" for product "Dir-853" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-1210 Firmware Search vendor "Dlink" for product "Dir-1210 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-1210 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-1210 Search vendor "Dlink" for product "Dir-1210" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-806a Firmware Search vendor "Dlink" for product "Dir-806a Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-806a Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-806a Search vendor "Dlink" for product "Dir-806a" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-815 Firmware Search vendor "Dlink" for product "Dir-815 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-815 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-815 Search vendor "Dlink" for product "Dir-815" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dsl-245gr Firmware Search vendor "Dlink" for product "Dsl-245gr Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dsl-245gr Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dsl-245gr Search vendor "Dlink" for product "Dsl-245gr" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dsl-g2452gr Firmware Search vendor "Dlink" for product "Dsl-g2452gr Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dsl-g2452gr Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dsl-g2452gr Search vendor "Dlink" for product "Dsl-g2452gr" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-878 Firmware Search vendor "Dlink" for product "Dir-878 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-878 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-878 Search vendor "Dlink" for product "Dir-878" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-825acf Firmware Search vendor "Dlink" for product "Dir-825acf Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-825acf Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-825acf Search vendor "Dlink" for product "Dir-825acf" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-615t Firmware Search vendor "Dlink" for product "Dir-615t Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-615t Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-615t Search vendor "Dlink" for product "Dir-615t" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-300 Firmware Search vendor "Dlink" for product "Dir-300 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-300 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-300 Search vendor "Dlink" for product "Dir-300" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-842s Firmware Search vendor "Dlink" for product "Dir-842s Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-842s Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-842s Search vendor "Dlink" for product "Dir-842s" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-815s Firmware Search vendor "Dlink" for product "Dir-815s Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-815s Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-815s Search vendor "Dlink" for product "Dir-815s" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dsl-2640u Firmware Search vendor "Dlink" for product "Dsl-2640u Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dsl-2640u Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dsl-2640u Search vendor "Dlink" for product "Dsl-2640u" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-2150 Firmware Search vendor "Dlink" for product "Dir-2150 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-2150 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-2150 Search vendor "Dlink" for product "Dir-2150" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dwr-921 Firmware Search vendor "Dlink" for product "Dwr-921 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dwr-921 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dwr-921 Search vendor "Dlink" for product "Dwr-921" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-615s Firmware Search vendor "Dlink" for product "Dir-615s Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-615s Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-615s Search vendor "Dlink" for product "Dir-615s" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-620 Firmware Search vendor "Dlink" for product "Dir-620 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-620 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-620 Search vendor "Dlink" for product "Dir-620" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dvg-5402g Firmware Search vendor "Dlink" for product "Dvg-5402g Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dvg-5402g Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dvg-5402g Search vendor "Dlink" for product "Dvg-5402g" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-882 Firmware Search vendor "Dlink" for product "Dir-882 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-882 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-882 Search vendor "Dlink" for product "Dir-882" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dwm-312w Firmware Search vendor "Dlink" for product "Dwm-312w Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dwm-312w Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dwm-312w Search vendor "Dlink" for product "Dwm-312w" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-815\/ac Firmware Search vendor "Dlink" for product "Dir-815\/ac Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-815\/ac Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-815\/ac Search vendor "Dlink" for product "Dir-815\/ac" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dsl-224 Firmware Search vendor "Dlink" for product "Dsl-224 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dsl-224 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dsl-224 Search vendor "Dlink" for product "Dsl-224" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dwm-321 Firmware Search vendor "Dlink" for product "Dwm-321 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dwm-321 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dwm-321 Search vendor "Dlink" for product "Dwm-321" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-x1860 Firmware Search vendor "Dlink" for product "Dir-x1860 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-x1860 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-x1860 Search vendor "Dlink" for product "Dir-x1860" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dap-1360 Firmware Search vendor "Dlink" for product "Dap-1360 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dap-1360 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dap-1360 Search vendor "Dlink" for product "Dap-1360" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-820 Firmware Search vendor "Dlink" for product "Dir-820 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-820 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-820 Search vendor "Dlink" for product "Dir-820" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-843 Firmware Search vendor "Dlink" for product "Dir-843 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-843 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-843 Search vendor "Dlink" for product "Dir-843" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dvg-5402g\/gfru Firmware Search vendor "Dlink" for product "Dvg-5402g\/gfru Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dvg-5402g\/gfru Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dvg-5402g\/gfru Search vendor "Dlink" for product "Dvg-5402g\/gfru" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dwr-953 Firmware Search vendor "Dlink" for product "Dwr-953 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dwr-953 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dwr-953 Search vendor "Dlink" for product "Dwr-953" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dvg-n5402g\/il Firmware Search vendor "Dlink" for product "Dvg-n5402g\/il Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dvg-n5402g\/il Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dvg-n5402g\/il Search vendor "Dlink" for product "Dvg-n5402g\/il" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-825ac Firmware Search vendor "Dlink" for product "Dir-825ac Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-825ac Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-825ac Search vendor "Dlink" for product "Dir-825ac" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-620s Firmware Search vendor "Dlink" for product "Dir-620s Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-620s Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-620s Search vendor "Dlink" for product "Dir-620s" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dvg-n5402g Firmware Search vendor "Dlink" for product "Dvg-n5402g Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dvg-n5402g Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dvg-n5402g Search vendor "Dlink" for product "Dvg-n5402g" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dsl-2750u Firmware Search vendor "Dlink" for product "Dsl-2750u Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dsl-2750u Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dsl-2750u Search vendor "Dlink" for product "Dsl-2750u" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-615gf Firmware Search vendor "Dlink" for product "Dir-615gf Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-615gf Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-615gf Search vendor "Dlink" for product "Dir-615gf" | - | - |
Safe
|
| Dlink Search vendor "Dlink" | Dir-816 Firmware Search vendor "Dlink" for product "Dir-816 Firmware" | <= 2024-01-12 Search vendor "Dlink" for product "Dir-816 Firmware" and version " <= 2024-01-12" | - |
Affected
| in | Dlink Search vendor "Dlink" | Dir-816 Search vendor "Dlink" for product "Dir-816" | - | - |
Safe
|