An issue exists on D-Link 6600-AP, DWL-3600AP, and DWL-8610AP Ax 4.2.0.14 21/03/2019 devices. There is post-authenticated Certificate and RSA Private Key extraction through an insecure sslcert-get.cgi HTTP command.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dlink 6600-ap_firmware 4.2.0.14 |
||
dlink dwl-3600ap_firmware 4.2.0.14 |
||
dlink dwl-8610ap_firmware 4.2.0.14 |