Information Disclosure Vulnerability in D-Link DSL-2875AL and DSL-2877AL Devices

Information Disclosure Vulnerability in D-Link DSL-2875AL and DSL-2877AL Devices

CVE-2019-15656 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

D-Link DSL-2875AL and DSL-2877AL devices through 1.00.05 are prone to information disclosure via a simple crafted request to index.asp on the web management server because of username_v and password_v variables.

Learn more about our Web App Pen Testing.