Lucene search

AttackerKBAKB:25D37DC4-72F4-4C61-ABED-717A8C0F52A8

HistoryOct 19, 2022 - 12:00 a.m.

CVE-2016-20017

2022-10-1900:00:00

attackerkb.com

cve-2016-20017

exploit in the wild

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.014 Low

EPSS

Percentile

86.5%

JSON

D-Link DSL-2750B devices before 1.05 allow remote unauthenticated command injection via the login.cgi cli parameter, as exploited in the wild in 2016 through 2022.

Recent assessments:

Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 0

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-20017

seclists.org/fulldisclosure/2016/Feb/53

supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10088

www.exploit-db.com/exploits/44760

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.014 Low

EPSS

Percentile

86.5%

JSON

Related for AKB:25D37DC4-72F4-4C61-ABED-717A8C0F52A8