An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. There is an information disclosure vulnerability via requests for the router_info.xml document. This will reveal the PIN code, MAC address, routing table, firmware version, update time, QOS information, LAN information, and WLAN information of the device.
References
Link | Resource |
---|---|
https://github.com/WhooAmii/whooamii.github.io/blob/master/2018/DIR-825/information%20disclosure.md | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-02-25T05:00:00
Updated: 2019-02-25T05:57:01
Reserved: 2019-02-24T00:00:00
Link: CVE-2019-9126
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-02-25T05:29:01.503
Modified: 2023-11-08T22:47:49.870
Link: CVE-2019-9126
JSON object: View
Redhat Information
No data.
CWE