webinc/js/info.php on D-Link DIR-816L 2.06.B09_BETA and DIR-803 1.04.B02 devices allows XSS via the HTTP Referer header. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: this is typically not exploitable because of URL encoding (except in Internet Explorer) and because a web page cannot specify that a client should make an additional HTTP request with an arbitrary Referer header

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N
Vendors Products
Dlink
  • Dir-815 Firmware
  • Dir-816l Firmware
  • Dir-860l
  • Dir-865l
  • Dir-803 Firmware
  • Dir-860l Firmware
  • Dir-645
  • Dir-803
  • Dir-815
  • Dir-865l Firmware
  • Dir-816l
  • Dir-645 Firmware

Configuration 1 [-]

AND
cpe:2.3:o:dlink:dir-803_firmware:1.04.b02:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dir-803:a1:*:*:*:*:*:*:*

Configuration 2 [-]

AND
OR cpe:2.3:o:dlink:dir-816l_firmware:2.06:*:*:*:*:*:*:*
cpe:2.3:o:dlink:dir-816l_firmware:2.06.b09:beta:*:*:*:*:*:*
cpe:2.3:h:dlink:dir-816l:b1:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:dlink:dir-645_firmware:1.06b01:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dir-645:a1:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:dlink:dir-815_firmware:2.07.b01:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dir-815:b1:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:dlink:dir-860l_firmware:1.10b04:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dir-860l:a1:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:o:dlink:dir-865l_firmware:1.08b01:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dir-865l:a1:*:*:*:*:*:*:*
References
Link Resource
https://github.com/sek1th/iot/blob/master/DIR-816L_XSS.md Exploit Third Party Advisory
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10190 Vendor Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2020-09-19T19:24:09

Updated: 2020-09-19T19:24:09

Reserved: 2020-09-19T00:00:00

Link: CVE-2020-25786

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2020-09-19T20:15:11.903

Modified: 2024-05-17T01:46:24.000

Link: CVE-2020-25786

JSON object: View

cve-icon Redhat Information

No data.

CWE