Vulnerabilities > CVE-2023-36090 - Incorrect Authorization vulnerability in Dlink Dir-885L Firmware 1.02

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
dlink
CWE-863
critical

Summary

Authentication Bypass vulnerability in D-Link DIR-885L FW102b01 allows remote attackers to gain escalated privileges via phpcgi. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Vulnerable Configurations

Part Description Count
OS
Dlink
1
Hardware
Dlink
1

Common Weakness Enumeration (CWE)