PT-2020-5325 · D Link · D-Link Dsl-2640B

Published

2020-03-30

Updated

2021-07-21

CVE-2020-9275

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions D-Link DSL-2640B versions prior to the fixed version

Description The issue is related to insufficient protection of registration data in the cfm UDP service of the D-Link DSL-2640B router software. This allows a remote attacker to gain access to administrative credentials. The cfm UDP service listening on port 65002 enables remote, unauthenticated exfiltration of administrative credentials.

Recommendations For D-Link DSL-2640B versions prior to the fixed version, consider disabling the cfm UDP service listening on port 65002 as a temporary workaround to minimize the risk of exploitation. Restrict access to the administrative interface to prevent unauthorized access until a patch is available.

Exploit

Fix

Missing Authentication

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-306CWE-522

Related Identifiers

BDU:2021-00103

CVE-2020-9275

Affected Products

D-Link Dsl-2640B

PT-2020-5325 · D Link · D-Link Dsl-2640B

CVE-2020-9275

Weakness Enumeration

Related Identifiers

Affected Products

References · 12