Patryk Bogdan

**Name of the Vulnerable Software and Affected Versions** D-Link DWR-116 versions 1.06 and earlier D-Link DIR-140L versions 1.02 and earlier D-Link DIR-640L versions 1.02 and earlier D-Link DWR-512 versions 2.02 and earlier D-Link DWR-712 versions 2.02 and earlier D-Link DWR-912 versions 2.02 and earlier D-Link DWR-921 versions 2.02 and earlier D-Link DWR-111 versions 1.01 and earlier **Description** The issue is related to a directory traversal vulnerability in the web interface of D-Link devices. This vulnerability allows remote attackers to read arbitrary files via a specially crafted HTTP request, such as by including `/..` or `//` after "GET /uir". The vulnerability exists due to insufficient path checking. **Recommendations** For D-Link DWR-116 versions 1.06 and earlier, update to a version later than 1.06. For D-Link DIR-140L versions 1.02 and earlier, update to a version later than 1.02. For D-Link DIR-640L versions 1.02 and earlier, update to a version later than 1.02. For D-Link DWR-512 versions 2.02 and earlier, update to a version later than 2.02. For D-Link DWR-712 versions 2.02 and earlier, update to a version later than 2.02. For D-Link DWR-912 versions 2.02 and earlier, update to a version later than 2.02. For D-Link DWR-921 versions 2.02 and earlier, update to a version later than 2.02. For D-Link DWR-111 versions 1.01 and earlier, update to a version later than 1.01. As a temporary workaround, consider restricting access to the web interface until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Brother printer software versions (affected versions not specified) Affected models are: MFC-J6973CDW MFC-J4420DW MFC-8710DW MFC-J4620DW MFC-L8850CDW MFC-J3720 MFC-J6520DW MFC-L2740DW MFC-J5910DW MFC-J6920DW MFC-L2700DW MFC-9130CW MFC-9330CDW MFC-9340CDW MFC-J5620DW MFC-J6720DW MFC-L8600CDW MFC-L9550CDW MFC-L2720DW DCP-L2540DW DCP-L2520DW HL-3140CW HL-3170CDW HL-3180CDW HL-L8350CDW HL-L2380DW ADS-2500W ADS-1000W ADS-1500W **Description** The vulnerability is related to the authentication procedure in Brother printer software. After a failed login attempt, the HTTP response includes a valid `AuthCookie`, which can be exploited by a remote attacker to gain access to the device. **Recommendations** For each of the affected models, consider disabling the authentication mechanism until a patch is available. Restrict access to the device to minimize the risk of exploitation. Avoid using the device until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DWR-116 device with firmware before V1.05b09 **Description** The issue allows remote attackers to read arbitrary files via a .. (dot dot) in a "GET /uir/" request. This is a directory traversal vulnerability in the web interface. **Recommendations** For firmware before V1.05b09, update to V1.05b09 or later to resolve the issue. As a temporary workaround, consider restricting access to the web interface to minimize the risk of exploitation. Avoid using the .. (dot dot) sequence in the "GET /uir/" request until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Cisco EPC3928 (affected versions not specified) **Description** The issue allows remote attackers to obtain sensitive configuration and credential information by making requests during the early part of the boot process. This is related to a "Boot Information Disclosure" issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco EPC3928 devices (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, resulting in a device crash, by exploiting the `goform/WClientMACList` endpoint with a long `h sortWireless` parameter. This is related to a "Gateway Client List Denial of Service" issue. **Recommendations** For Cisco EPC3928 devices, as a temporary workaround, consider restricting access to the `goform/WClientMACList` endpoint until a patch is available. Avoid using the `h sortWireless` parameter in the affected endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Cisco EPC3928 devices (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, resulting in a device crash. This is achieved by exploiting the `goform/Docsis system` endpoint with a long `LanguageSelect` parameter, which is related to a Gateway HTTP Corruption Denial of Service issue. **Recommendations** For Cisco EPC3928 devices, as a temporary workaround, consider restricting access to the `goform/Docsis system` endpoint until a patch is available. Avoid using long values for the `LanguageSelect` parameter in the affected endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco EPC3928 devices with EDVA versions 5.5.10 through 5.5.11 Cisco EPC3928 devices with EDVA version 5.7.1 **Description** The issue allows remote attackers to bypass an intended authentication requirement and execute unspecified administrative functions via a crafted HTTP request. **Recommendations** For Cisco EPC3928 devices with EDVA versions 5.5.10 through 5.5.11, update to a version that addresses this issue. For Cisco EPC3928 devices with EDVA version 5.7.1, update to a version that addresses this issue. As a temporary workaround, consider restricting access to administrative functions until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Cisco EPC3928 devices with EDVA versions 5.5.10 through 5.5.11 Cisco EPC3928 devices with EDVA version 5.7.1 **Description** A cross-site scripting (XSS) issue in the management interface allows remote attackers to inject arbitrary web script or HTML via an unspecified value. **Recommendations** For EDVA versions 5.5.10 through 5.5.11, update to a version that fixes this issue. For EDVA version 5.7.1, update to a version that fixes this issue. As a temporary workaround, consider restricting access to the management interface to minimize the risk of exploitation.