CVE-2019-1010155

D-Link DSL-2750U 1.11 is affected by: Authentication Bypass. The impact is: denial of service and information leakage. The component is: login. NOTE: Third parties dispute this issues as not being a vulnerability because although the wizard is accessible without authentication, it can't actually configure anything. Thus, there is no denial of service or information leakage
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.1 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
dwfCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
VendorProductVersion
dlinkdsl-2750u_firmware
1.11
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/109351
https://cxsecurity.com/issue/WLB-2018080199
https://www.youtube.com/watch?v=7sk6agpcA_s
https://youtu.be/BQQbp2vn_wY
http://www.securityfocus.com/bid/109351
https://cxsecurity.com/issue/WLB-2018080199
https://www.youtube.com/watch?v=7sk6agpcA_s
https://youtu.be/BQQbp2vn_wY