Raymond

**Name of the Vulnerable Software and Affected Versions** MCP Inspector versions prior to 0.16.6 **Description** The MCP Inspector, a developer tool for testing and debugging MCP servers, is susceptible to a cross-site scripting issue. This issue occurs when connecting to untrusted remote MCP servers with a malicious redirect URI. Exploitation of this issue could allow interaction with the inspector proxy, potentially triggering arbitrary command execution. **Recommendations** Update MCP Inspector to version 0.16.6.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-X4860 A1 version 1.00/1.04 D-Link DIR-X5460A1 (affected versions not specified) D-Link COVR-X1870 (affected versions not specified) **Description** The issue concerns a hidden functionality in certain D-Link wireless routers where the telnet service is enabled when the WAN port is plugged in. This allows unauthorized remote attackers to log in and execute OS commands using hard-coded credentials. The vulnerability is related to the presence of undocumented configuration commands in the telnet service. **Recommendations** For D-Link DIR-X4860 A1 version 1.00/1.04, restrict telnet access and patch immediately. For D-Link DIR-X5460A1 and D-Link COVR-X1870, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-X4860 versions (affected versions not specified) D-Link DIR-X5460A1 versions (affected versions not specified) D-Link COVR-X1870 versions (affected versions not specified) **Description** The issue is related to the presence of hidden functionality in certain D-Link wireless routers, allowing an attacker to forcibly enable the telnet service by sending specific packets to the web service. This can grant the attacker access to the device using hard-coded credentials. The telnet service enabled through this method can only be accessed from within the same local network as the device. **Recommendations** For D-Link DIR-X4860, consider disabling the telnet service immediately and check for firmware updates from the vendor. For D-Link DIR-X5460A1, consider disabling the telnet service immediately and check for firmware updates from the vendor. For D-Link COVR-X1870, consider disabling the telnet service immediately and check for firmware updates from the vendor. As a temporary workaround, restrict access to the telnet service to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** D-Link wireless routers (affected versions not specified) **Description** The issue is related to the telnet service in certain D-Link wireless routers, where user input is not properly validated, allowing unauthenticated remote attackers to use hard-coded credentials to log into telnet and inject arbitrary OS commands. This can result in the execution of commands on the device, potentially leading to unauthorized access to confidential information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link wireless routers (affected versions not specified) D-Link DIR-X4860 D-Link DIR-X5460A1 D-Link COVR-X1870 **Description** The web service of certain models of D-Link wireless routers contains a Stack-based Buffer Overflow vulnerability, which allows unauthenticated remote attackers to exploit this vulnerability to execute arbitrary code on the device. This flaw lets unauthenticated remote attackers execute code on the device without authorization. **Recommendations** For D-Link DIR-X4860, consider disabling the web service until a patch is available. For D-Link DIR-X5460A1, restrict access to the web service to minimize the risk of exploitation. For D-Link COVR-X1870, avoid using the web service until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link wireless routers (affected versions not specified) **Description** The web service of certain models of D-Link wireless routers contains a Stack-based Buffer Overflow issue, which allows unauthenticated remote attackers to exploit this issue to execute arbitrary code on the device. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: D-Link wireless routers (affected versions not specified) Description: The issue allows unauthenticated attackers on the same local area network to read arbitrary system files by manipulating the URL, due to a path traversal vulnerability. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link wireless routers (affected versions not specified) **Description** The issue is related to an undisclosed factory testing backdoor in certain models of D-Link wireless routers. This backdoor allows unauthenticated attackers on the local area network to enable the Telnet service by accessing a specific URL and log in using the administrator credentials obtained from analyzing the firmware. The backdoor is believed to have been used for automating device testing during production. **Recommendations** As a temporary workaround, consider disabling the Telnet service on the device until a patch is available. Restrict access to the device from the local area network to minimize the risk of exploitation. Avoid using the default administrator credentials for the device; change them to unique, strong credentials if possible. At the moment, there is no information about a newer version that contains a fix for this vulnerability.