In D-Link DIR-860L REVA FIRMWARE PATCH 1.10..B04, the Telnet service contains hardcoded credentials, enabling attackers to log in remotely to the Telnet service and perform arbitrary commands.
The vulnerability results from the presence of hardcoded credentials (CWE-798) embedded directly in the device firmware. The Telnet service available over the network accepts these static login credentials, which the user cannot change or remove in a standard way. An attacker who knows these credentials can establish a Telnet session from anywhere on the network and gain interactive access to the device's system shell.
An attacker gains full, unauthorized access to the device with the ability to execute arbitrary commands — which can result in router takeover, modification of network configuration, interception of network traffic, or use of the device as a pivot point for further attacks (lateral movement).
Apply patches available from the manufacturer in accordance with the references (https://www.dlink.com/en/security-bulletin/). If a patch is not available, it is recommended to block access to the Telnet service at the firewall level and restrict access to the management interface solely to trusted IP addresses. Consider replacing the device if the manufacturer does not provide updates.
D-Link DIR-860L REVA with firmware PATCH 1.10.B04
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HDlink Dir 860l
HWDlinkwszystkie wersjeDlink Dir 860l Firmware
OSDlink1.10b04
Related vulnerabilities
OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMW...
Buffer overflow w D-Link DIR-860L v2.03 — brak weryfikacji długości pola SID
D-Link DIR-822 Rev.B 202KRb06, DIR-822 Rev.C 3.10B06, DIR-860L Rev.B 2.03.B03, DIR-868L Rev.B 2.05B02, DIR-880...
On D-Link DIR-818LW Rev.A 2.05.B03 and DIR-860L Rev.B 2.03.B03 devices, unauthenticated remote OS command exec...
A vulnerability was identified in D-Link DIR-860L 2.04.B04. This affects the function ssdpcgi_main of the file...