CVE-2018-15517

Name of the Vulnerable Software and Affected Versions D-Link Central WiFiManager CWM-100 version 1.03 r0098

Description The issue concerns the MailConnect feature, which is supposed to check connections to an SMTP server but actually allows outbound TCP to any port on any IP address. This leads to a Server-Side Request Forgery (SSRF) vulnerability, as demonstrated by a specific URI, "index.php/System/MailConnect/host/127.0.0.1/port/22/secure/". The vulnerability exists due to insufficient validation of incoming requests, potentially allowing a remote attacker to perform an SSRF attack.

Recommendations For D-Link Central WiFiManager CWM-100 version 1.03 r0098, consider disabling the MailConnect feature until a patch is available to prevent potential SSRF attacks. Restrict access to the MailConnect functionality to minimize the risk of exploitation. Avoid using the MailConnect feature with untrusted input until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.