CVE-2018-20432
First published: Mon Sep 14 2020(Updated: )
D-Link COVR-2600R and COVR-3902 Kit before 1.01b05Beta01 use hardcoded credentials for telnet connection, which allows unauthenticated attackers to gain privileged access to the router, and to extract sensitive data or modify the configuration.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dlink Covr-2600r Firmware | <=1.01b05 | |
| Dlink Covr-2600r | ||
| Dlink Covr-3902 Firmware | <=1.01b05 | |
| Dlink Covr-3902 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/severity
- agent/author
- agent/references
- agent/weakness
- agent/description
- agent/type
- agent/event
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/dlink
- canonical/dlink covr-2600r firmware
- version/dlink covr-2600r firmware/1.01b05
- canonical/dlink covr-2600r
- canonical/dlink covr-3902 firmware
- version/dlink covr-3902 firmware/1.01b05
- canonical/dlink covr-3902