CVE-2020-29324

2021-06-0419:39:57

CSW

www.cve.org

dlink router

dir-895l

mfc

credentials disclosure

telnet service

decompilation

firmware

unauthenticated attacker

sensitive data

EPSS

0.004

Percentile

73.1%

JSON

The DLink Router DIR-895L MFC v1.21b05 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that allows an unauthenticated attacker to gain access to the firmware and to extract sensitive data.

CNA Affected

[
  {
    "product": "D-Link Router DIR-895L",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "v1.21b05"
      }
    ]
  }
]

References

cybersecurityworks.com/zerodays/cve-2020-29324-d-link-router-dir-895l-mfc-telnet-hardcoded-credentials.html

EPSS

0.004

Percentile

73.1%

JSON

Related for CVELIST:CVE-2020-29324