Lucene search

[email protected]CVE-2013-4772

HistoryMay 12, 2014 - 2:55 p.m.

CVE-2013-4772

2014-05-1214:55:05

CWE-287

[email protected]

web.nvd.nist.gov

cve-2013-4772

d-link

dir-505l

shareport

mobile companion

dir-826l

wireless

n600

cloud router

authentication

bypass

remote attackers

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.1 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.6%

JSON

D-Link DIR-505L SharePort Mobile Companion 1.01 and DIR-826L Wireless N600 Cloud Router 1.02 allows remote attackers to bypass authentication via a direct request when an authorized session is active.

Affected configurations

NVD

Node

dlinkdir-826l_wireless_n600_cloud_router_firmwareMatch1.02

AND

dlinkdir-826l_wireless_n600_cloud_routerMatcha1

Node

dlinkdir-505l_shareport_mobile_companion_firmwareMatch1.01

AND

dlinkdir-505l_shareport_mobile_companionMatcha1

CPENameOperatorVersion
dlink:dir-826l_wireless_n600_cloud_router_firmwaredlink dir-826l wireless n600 cloud router firmwareeq1.02
dlink:dir-826l_wireless_n600_cloud_routerdlink dir-826l wireless n600 cloud routereqa1

CPE	Name	Operator	Version
dlink:dir-826l_wireless_n600_cloud_router_firmware	dlink dir-826l wireless n600 cloud router firmware	eq	1.02
dlink:dir-826l_wireless_n600_cloud_router	dlink dir-826l wireless n600 cloud router	eq	a1