PT-2024-5342 · D Link · D-Link Dsl-225

Published

2024-07-18

Updated

2024-08-29

CVE-2024-38438

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions D-Link DSL-225 (affected versions not specified)

Description The issue is related to an authentication bypass in D-Link routers, specifically allowing a remote attacker to bypass the authentication process. This is a capture-replay attack, which involves reusing previously captured authentication credentials to gain unauthorized access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-294

Related Identifiers

BDU:2024-05975

CVE-2024-38438

Affected Products

D-Link Dsl-225

PT-2024-5342 · D Link · D-Link Dsl-225

CVE-2024-38438

Weakness Enumeration

Related Identifiers

Affected Products

References · 9