CVE-2018-6213

Name of the Vulnerable Software and Affected Versions D-Link DIR-620 devices with customized firmware versions 1.0.3, 1.0.37, 1.3.1, 1.3.3, 1.3.7, 1.4.0, and 2.0.22

Description The issue is related to a hardcoded password for the admin account, specifically set to anonymous. This could allow a remote attacker to gain unauthorized access and elevate their privileges, potentially accessing protected information.

Recommendations For firmware versions 1.0.3, 1.0.37, 1.3.1, 1.3.3, 1.3.7, 1.4.0, and 2.0.22, consider changing the admin account password to a secure one as a temporary workaround. At the moment, there is no information about a newer version that contains a fix for this vulnerability.