CVE-2021-21913
First published: Thu Sep 23 2021(Updated: )
An information disclosure vulnerability exists in the WiFi Smart Mesh functionality of D-LINK DIR-3040 1.13B03. A specially-crafted network request can lead to command execution. An attacker can connect to the MQTT service to trigger this vulnerability.
Credit: talos-cna@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dlink Dir-3040 Firmware | =1.13b03 | |
| Dlink Dir-3040 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2021-21913.
What is the severity of CVE-2021-21913?
CVE-2021-21913 has a severity rating of 9.8 (Critical).
What is the affected software of CVE-2021-21913?
The affected software of CVE-2021-21913 is D-LINK DIR-3040 Firmware 1.13B03.
What is the description of CVE-2021-21913?
CVE-2021-21913 is an information disclosure vulnerability in the WiFi Smart Mesh functionality of D-LINK DIR-3040 1.13B03, which can be exploited to lead to command execution.
Is there any reference for CVE-2021-21913?
Yes, you can find more details about CVE-2021-21913 at the following link: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1361
- collector/nvd-index
- agent/weakness
- agent/references
- agent/type
- agent/event
- agent/severity
- agent/author
- agent/description
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/dlink
- canonical/dlink dir-3040 firmware
- version/dlink dir-3040 firmware/1.13b03
- canonical/dlink dir-3040