Vulnerabilities > Dlink > DSL 2875Al Firmware

DATE CVE VULNERABILITY TITLE RISK
2020-03-19 CVE-2019-15656 Insufficiently Protected Credentials vulnerability in Dlink Dsl-2875Al Firmware and Dsl-2877Al Firmware
D-Link DSL-2875AL and DSL-2877AL devices through 1.00.05 are prone to information disclosure via a simple crafted request to index.asp on the web management server because of username_v and password_v variables.
network
low complexity
dlink CWE-522
7.5
7.5
2020-03-19 CVE-2019-15655 Insufficiently Protected Credentials vulnerability in Dlink Dsl-2875Al Firmware 1.00.05
D-Link DSL-2875AL devices through 1.00.05 are prone to password disclosure via a simple crafted /romfile.cfg request to the web management server.
network
low complexity
dlink CWE-522
7.5
7.5