CVE-2019-17353
First published: Wed Oct 09 2019(Updated: )
An issue discovered on D-Link DIR-615 devices with firmware version 20.05 and 20.07. wan.htm can be accessed directly without authentication, which can lead to disclosure of information about the WAN, and can also be leveraged by an attacker to modify the data fields of the page.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| D-Link DIR-615 | =20.05 | |
| D-Link DIR-615 | =20.07 | |
| D-Link DIR-615 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2019-17353?
CVE-2019-17353 is considered a medium severity vulnerability due to its potential to disclose sensitive WAN information.
How do I fix CVE-2019-17353?
To fix CVE-2019-17353, update the D-Link DIR-615 firmware to a version higher than 20.07.
What type of information can be disclosed by CVE-2019-17353?
CVE-2019-17353 can lead to the disclosure of sensitive information related to the WAN settings of the D-Link DIR-615.
Is the D-Link DIR-615 vulnerable under all firmware versions?
The D-Link DIR-615 is only vulnerable on firmware versions 20.05 and 20.07.
Can CVE-2019-17353 be exploited remotely?
Yes, CVE-2019-17353 can be exploited remotely without authentication, leading to potential unauthorized access.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/dlink
- canonical/d-link dir-615
- version/d-link dir-615/20.05
- version/d-link dir-615/20.07