// For flags

CVE-2024-0717

D-Link Good Line Router v2 HTTP GET Request devinfo information disclosure

Severity Score

5.3
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815, DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR-843, DIR-853, DIR-878, DIR-882, DIR-1210, DIR-1260, DIR-2150, DIR-X1530, DIR-X1860, DSL-224, DSL-245GR, DSL-2640U, DSL-2750U, DSL-G2452GR, DVG-5402G, DVG-5402G, DVG-5402GFRU, DVG-N5402G, DVG-N5402G-IL, DWM-312W, DWM-321, DWR-921, DWR-953 and Good Line Router v2 up to 20240112. This vulnerability affects unknown code of the file /devinfo of the component HTTP GET Request Handler. The manipulation of the argument area with the input notice|net|version leads to information disclosure. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-251542 is the identifier assigned to this vulnerability.

Una vulnerabilidad fue encontrada en D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815 y clasificada como crítica , DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR -843, DIR-853, DIR-878, DIR-882, DIR-1210, DIR-1260, DIR-2150, DIR-X1530, DIR-X1860, DSL-224, DSL-245GR, DSL-2640U, DSL-2750U , DSL-G2452GR, DVG-5402G, DVG-5402G, DVG-5402GFRU, DVG-N5402G, DVG-N5402G-IL, DWM-312W, DWM-321, DWR-921, DWR-953 y Good Line Router v2 hasta 20240112 Esta vulnerabilidad afecta a código desconocido del archivo /devinfo del componente HTTP GET Request Handler. La manipulación del área de argumentos con la entrada aviso|net|versión conduce a la divulgación de información. El ataque se puede iniciar de forma remota. El exploit ha sido divulgado al público y puede utilizarse. VDB-251542 es el identificador asignado a esta vulnerabilidad.

In D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815, DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR-843, DIR-853, DIR-878, DIR-882, DIR-1210, DIR-1260, DIR-2150, DIR-X1530, DIR-X1860, DSL-224, DSL-245GR, DSL-2640U, DSL-2750U, DSL-G2452GR, DVG-5402G, DVG-5402G, DVG-5402GFRU, DVG-N5402G, DVG-N5402G-IL, DWM-312W, DWM-321, DWR-921, DWR-953 and Good Line Router v2 bis 20240112 wurde eine Schwachstelle entdeckt. Sie wurde als kritisch eingestuft. Betroffen ist eine unbekannte Verarbeitung der Datei /devinfo der Komponente HTTP GET Request Handler. Mittels dem Manipulieren des Arguments area mit der Eingabe notice|net|version mit unbekannten Daten kann eine information disclosure-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk passieren. Der Exploit steht zur öffentlichen Verfügung.

*Credits: 99iz
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2024-01-19 CVE Reserved
  • 2024-01-19 CVE Published
  • 2024-01-26 EPSS Updated
  • 2024-08-01 CVE Updated
  • 2024-08-01 First Exploit
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (2)
URL Tag Source
https://vuldb.com/?id.251542 Technical Description
URL Date SRC
https://github.com/999zzzzz/D-Link 2024-08-01
URL Date SRC
URL Date SRC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Dlink
Search vendor "Dlink"
Dir-825acg1 Firmware
Search vendor "Dlink" for product "Dir-825acg1 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-825acg1 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-825acg1
Search vendor "Dlink" for product "Dir-825acg1"
--
Safe
Dlink
Search vendor "Dlink"
Dir-841 Firmware
Search vendor "Dlink" for product "Dir-841 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-841 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-841
Search vendor "Dlink" for product "Dir-841"
--
Safe
Dlink
Search vendor "Dlink"
Dir-1260 Firmware
Search vendor "Dlink" for product "Dir-1260 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-1260 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-1260
Search vendor "Dlink" for product "Dir-1260"
--
Safe
Dlink
Search vendor "Dlink"
Dir-822 Firmware
Search vendor "Dlink" for product "Dir-822 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-822 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-822
Search vendor "Dlink" for product "Dir-822"
--
Safe
Dlink
Search vendor "Dlink"
Dir-x1530 Firmware
Search vendor "Dlink" for product "Dir-x1530 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-x1530 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-x1530
Search vendor "Dlink" for product "Dir-x1530"
--
Safe
Dlink
Search vendor "Dlink"
Dir-825 Firmware
Search vendor "Dlink" for product "Dir-825 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-825 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-825
Search vendor "Dlink" for product "Dir-825"
--
Safe
Dlink
Search vendor "Dlink"
Dir-615 Firmware
Search vendor "Dlink" for product "Dir-615 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-615 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-615
Search vendor "Dlink" for product "Dir-615"
--
Safe
Dlink
Search vendor "Dlink"
Dir-842 Firmware
Search vendor "Dlink" for product "Dir-842 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-842 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-842
Search vendor "Dlink" for product "Dir-842"
--
Safe
Dlink
Search vendor "Dlink"
Dir-853 Firmware
Search vendor "Dlink" for product "Dir-853 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-853 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-853
Search vendor "Dlink" for product "Dir-853"
--
Safe
Dlink
Search vendor "Dlink"
Dir-1210 Firmware
Search vendor "Dlink" for product "Dir-1210 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-1210 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-1210
Search vendor "Dlink" for product "Dir-1210"
--
Safe
Dlink
Search vendor "Dlink"
Dir-806a Firmware
Search vendor "Dlink" for product "Dir-806a Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-806a Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-806a
Search vendor "Dlink" for product "Dir-806a"
--
Safe
Dlink
Search vendor "Dlink"
Dir-815 Firmware
Search vendor "Dlink" for product "Dir-815 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-815 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-815
Search vendor "Dlink" for product "Dir-815"
--
Safe
Dlink
Search vendor "Dlink"
Dsl-245gr Firmware
Search vendor "Dlink" for product "Dsl-245gr Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dsl-245gr Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dsl-245gr
Search vendor "Dlink" for product "Dsl-245gr"
--
Safe
Dlink
Search vendor "Dlink"
Dsl-g2452gr Firmware
Search vendor "Dlink" for product "Dsl-g2452gr Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dsl-g2452gr Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dsl-g2452gr
Search vendor "Dlink" for product "Dsl-g2452gr"
--
Safe
Dlink
Search vendor "Dlink"
Dir-878 Firmware
Search vendor "Dlink" for product "Dir-878 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-878 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-878
Search vendor "Dlink" for product "Dir-878"
--
Safe
Dlink
Search vendor "Dlink"
Dir-825acf Firmware
Search vendor "Dlink" for product "Dir-825acf Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-825acf Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-825acf
Search vendor "Dlink" for product "Dir-825acf"
--
Safe
Dlink
Search vendor "Dlink"
Dir-615t Firmware
Search vendor "Dlink" for product "Dir-615t Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-615t Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-615t
Search vendor "Dlink" for product "Dir-615t"
--
Safe
Dlink
Search vendor "Dlink"
Dir-300 Firmware
Search vendor "Dlink" for product "Dir-300 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-300 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-300
Search vendor "Dlink" for product "Dir-300"
--
Safe
Dlink
Search vendor "Dlink"
Dir-842s Firmware
Search vendor "Dlink" for product "Dir-842s Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-842s Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-842s
Search vendor "Dlink" for product "Dir-842s"
--
Safe
Dlink
Search vendor "Dlink"
Dir-815s Firmware
Search vendor "Dlink" for product "Dir-815s Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-815s Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-815s
Search vendor "Dlink" for product "Dir-815s"
--
Safe
Dlink
Search vendor "Dlink"
Dsl-2640u Firmware
Search vendor "Dlink" for product "Dsl-2640u Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dsl-2640u Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dsl-2640u
Search vendor "Dlink" for product "Dsl-2640u"
--
Safe
Dlink
Search vendor "Dlink"
Dir-2150 Firmware
Search vendor "Dlink" for product "Dir-2150 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-2150 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-2150
Search vendor "Dlink" for product "Dir-2150"
--
Safe
Dlink
Search vendor "Dlink"
Dwr-921 Firmware
Search vendor "Dlink" for product "Dwr-921 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dwr-921 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dwr-921
Search vendor "Dlink" for product "Dwr-921"
--
Safe
Dlink
Search vendor "Dlink"
Dir-615s Firmware
Search vendor "Dlink" for product "Dir-615s Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-615s Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-615s
Search vendor "Dlink" for product "Dir-615s"
--
Safe
Dlink
Search vendor "Dlink"
Dir-620 Firmware
Search vendor "Dlink" for product "Dir-620 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-620 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-620
Search vendor "Dlink" for product "Dir-620"
--
Safe
Dlink
Search vendor "Dlink"
Dvg-5402g Firmware
Search vendor "Dlink" for product "Dvg-5402g Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dvg-5402g Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dvg-5402g
Search vendor "Dlink" for product "Dvg-5402g"
--
Safe
Dlink
Search vendor "Dlink"
Dir-882 Firmware
Search vendor "Dlink" for product "Dir-882 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-882 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-882
Search vendor "Dlink" for product "Dir-882"
--
Safe
Dlink
Search vendor "Dlink"
Dwm-312w Firmware
Search vendor "Dlink" for product "Dwm-312w Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dwm-312w Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dwm-312w
Search vendor "Dlink" for product "Dwm-312w"
--
Safe
Dlink
Search vendor "Dlink"
Dir-815\/ac Firmware
Search vendor "Dlink" for product "Dir-815\/ac Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-815\/ac Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-815\/ac
Search vendor "Dlink" for product "Dir-815\/ac"
--
Safe
Dlink
Search vendor "Dlink"
Dsl-224 Firmware
Search vendor "Dlink" for product "Dsl-224 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dsl-224 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dsl-224
Search vendor "Dlink" for product "Dsl-224"
--
Safe
Dlink
Search vendor "Dlink"
Dwm-321 Firmware
Search vendor "Dlink" for product "Dwm-321 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dwm-321 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dwm-321
Search vendor "Dlink" for product "Dwm-321"
--
Safe
Dlink
Search vendor "Dlink"
Dir-x1860 Firmware
Search vendor "Dlink" for product "Dir-x1860 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-x1860 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-x1860
Search vendor "Dlink" for product "Dir-x1860"
--
Safe
Dlink
Search vendor "Dlink"
Dap-1360 Firmware
Search vendor "Dlink" for product "Dap-1360 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dap-1360 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dap-1360
Search vendor "Dlink" for product "Dap-1360"
--
Safe
Dlink
Search vendor "Dlink"
Dir-820 Firmware
Search vendor "Dlink" for product "Dir-820 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-820 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-820
Search vendor "Dlink" for product "Dir-820"
--
Safe
Dlink
Search vendor "Dlink"
Dir-843 Firmware
Search vendor "Dlink" for product "Dir-843 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-843 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-843
Search vendor "Dlink" for product "Dir-843"
--
Safe
Dlink
Search vendor "Dlink"
Dvg-5402g\/gfru Firmware
Search vendor "Dlink" for product "Dvg-5402g\/gfru Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dvg-5402g\/gfru Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dvg-5402g\/gfru
Search vendor "Dlink" for product "Dvg-5402g\/gfru"
--
Safe
Dlink
Search vendor "Dlink"
Dwr-953 Firmware
Search vendor "Dlink" for product "Dwr-953 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dwr-953 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dwr-953
Search vendor "Dlink" for product "Dwr-953"
--
Safe
Dlink
Search vendor "Dlink"
Dvg-n5402g\/il Firmware
Search vendor "Dlink" for product "Dvg-n5402g\/il Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dvg-n5402g\/il Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dvg-n5402g\/il
Search vendor "Dlink" for product "Dvg-n5402g\/il"
--
Safe
Dlink
Search vendor "Dlink"
Dir-825ac Firmware
Search vendor "Dlink" for product "Dir-825ac Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-825ac Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-825ac
Search vendor "Dlink" for product "Dir-825ac"
--
Safe
Dlink
Search vendor "Dlink"
Dir-620s Firmware
Search vendor "Dlink" for product "Dir-620s Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-620s Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-620s
Search vendor "Dlink" for product "Dir-620s"
--
Safe
Dlink
Search vendor "Dlink"
Dvg-n5402g Firmware
Search vendor "Dlink" for product "Dvg-n5402g Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dvg-n5402g Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dvg-n5402g
Search vendor "Dlink" for product "Dvg-n5402g"
--
Safe
Dlink
Search vendor "Dlink"
Dsl-2750u Firmware
Search vendor "Dlink" for product "Dsl-2750u Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dsl-2750u Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dsl-2750u
Search vendor "Dlink" for product "Dsl-2750u"
--
Safe
Dlink
Search vendor "Dlink"
Dir-615gf Firmware
Search vendor "Dlink" for product "Dir-615gf Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-615gf Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-615gf
Search vendor "Dlink" for product "Dir-615gf"
--
Safe
Dlink
Search vendor "Dlink"
Dir-816 Firmware
Search vendor "Dlink" for product "Dir-816 Firmware"
<= 2024-01-12
Search vendor "Dlink" for product "Dir-816 Firmware" and version " <= 2024-01-12"
-
Affected
in Dlink
Search vendor "Dlink"
Dir-816
Search vendor "Dlink" for product "Dir-816"
--
Safe