Published: 04/04/2017 Updated: 26/04/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 685

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

D-Link DIR-615 HW: T1 FW:20.09 is vulnerable to Cross-Site Request Forgery (CSRF) vulnerability. This enables an malicious user to perform an unwanted action on a wireless router for which the user/admin is currently authenticated, as demonstrated by changing the Security option from WPA2 to None, or changing the hiddenSSID parameter, SSID parameter, or a security-option password.

Vulnerable Product	Search on Vulmon	Subscribe to Product
d-link dir-615_firmware 20.09

Title: ==== D-Link DIR 615 HW: T1 FW:2009 is vulnerable to Cross-Site Request Forgery (CSRF) vulnerability Credit: ====== Name: Pratik S Shah Reference: ========= CVE Details: CVE-2017-7398 Date: ==== 1-04-2017 Vendor: ====== D-Link wireless router Product: ======= DIR-615 wwwdlinkcoin/products/?pid=678 A ...

D-Link DIR-615 suffers from a cross site request forgery vulnerability ...

CWE-352 http://seclists.org/fulldisclosure/2017/Apr/4 https://www.exploit-db.com/exploits/41821/https://nvd.nist.gov https://www.exploit-db.com/exploits/41821/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-7398

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect