TVN ID | TVN-202411012 |
---|---|
CVE ID | CVE-2024-11067 |
CVSS | 7.5 (High) CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Affected Products | DSL6740C |
Description | The D-Link DSL6740C modem has a Path Traversal Vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files. Additionally, since the device's default password is a combination of the MAC address, attackers can obtain the MAC address through this vulnerability and attempt to log in to the device using the default password. |
Solution | The affected devices are no longer supported for updates. It is recommended to replace the devices. |
Credit | Chiao-Lin Yu (Steven Meow) |
Public Date | 2024-11-11 |