CVE-2021-46381: Path Traversal
First published: Fri Mar 04 2022(Updated: )
Local File Inclusion due to path traversal in D-Link DAP-1620 leads to unauthorized internal files reading [/etc/passwd] and [/etc/shadow].
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dlink DAP-1620 Firmware | ||
| Dlink Dap-1620 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2021-46381?
CVE-2021-46381 has a high severity rating due to its potential for unauthorized reading of sensitive internal files.
How do I fix CVE-2021-46381?
To fix CVE-2021-46381, users should upgrade to the latest firmware version provided by D-Link.
What does CVE-2021-46381 exploit?
CVE-2021-46381 exploits a local file inclusion vulnerability caused by path traversal in the D-Link DAP-1620.
What internal files can be accessed due to CVE-2021-46381?
CVE-2021-46381 allows unauthorized reading of critical internal files, including /etc/passwd and /etc/shadow.
Which device is affected by CVE-2021-46381?
CVE-2021-46381 specifically affects the D-Link DAP-1620 and its firmware.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/dlink
- canonical/dlink dap-1620 firmware