CRITICAL🇬🇧 English

CVE-2016-10177

CVSS 9.8v3.1pub. 2017-01-30upd. 2026-05-13

An issue was discovered on the D-Link DWR-932B router. Undocumented TELNET and SSH services provide logins to admin with the password admin and root with the password 1234.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dlink Dwr 932b

    HW
    Dlink
    wszystkie wersje
  • Dlink Dwr 932b Firmware

    OS
    Dlink
    02.02eu
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2016-10178CRITICAL9.8ten sam produkt

An issue was discovered on the D-Link DWR-932B router. HELODBG on port 39889 (UDP) launches the "/sbin/telnetd...

CVE-2016-10182CRITICAL9.8ten sam produkt

An issue was discovered on the D-Link DWR-932B router. qmiweb allows command injection with ` characters.

CVE-2016-10180HIGH7.5ten sam produkt

An issue was discovered on the D-Link DWR-932B router. WPS PIN generation is based on srand(time(0)) seeding.

CVE-2016-10181HIGH7.5ten sam produkt

An issue was discovered on the D-Link DWR-932B router. qmiweb provides sensitive information for CfgType=get_h...

CVE-2016-10186HIGH7.5ten sam produkt

An issue was discovered on the D-Link DWR-932B router. /var/miniupnpd.conf has no deny rules.