Vulnerabilities > CVE-2020-13784 - Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Dlink Dir-865L Firmware 1.20B01
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
D-Link DIR-865L Ax 1.20B01 Beta devices have a predictable seed in a Pseudo-Random Number Generator.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 1 | |
Hardware | 1 |
Common Weakness Enumeration (CWE)
References
- https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10174
- https://unit42.paloaltonetworks.com/6-new-d-link-vulnerabilities-found-on-home-routers/
- https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10174
- https://unit42.paloaltonetworks.com/6-new-d-link-vulnerabilities-found-on-home-routers/