PT-2021-14154 · D Link · Dap-1880Ac

Chuya Hayakawa

Published

2021-04-26

Updated

2022-05-03

CVE-2021-20695

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: DAP-1880AC versions 1.21 and earlier

Description: The issue is related to an improper following of a certificate's chain of trust, allowing a remote authenticated attacker to gain root privileges via unspecified vectors.

Recommendations: For DAP-1880AC versions 1.21 and earlier, update to a version later than 1.21 to resolve the issue.

Fix

Improper Certificate Validation

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-295

Related Identifiers

CVE-2021-20695

Affected Products

Dap-1880Ac

PT-2021-14154 · D Link · Dap-1880Ac

CVE-2021-20695

Weakness Enumeration

Related Identifiers

Affected Products

References · 5