CVE-2020-25078

CVSS 7.5 HIGHEPSS 97.9%● KEV

In short

A security flaw in D-Link cameras allows anyone on the network to view the administrator password without logging in. This is dangerous because attackers can then take complete control of the camera and the network it protects.

Technical detail

An unauthenticated information disclosure vulnerability exists in the /config/getuser endpoint of D-Link DCS-2530L and DCS-2670L devices. A remote attacker can access this endpoint without authentication to retrieve administrator credentials, leading to complete device compromise and potential lateral movement within the network.

Summary generated and translated by AI from the official description.

An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. The unauthenticated /config/getuser endpoint allows for remote administrator password disclosure.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

n/a · n/a

public PoCs found — 3

githubgithub.com/MzzdToT/CVE-2020-25078★ 4 githubgithub.com/chinaYozz/CVE-2020-25078★ 0 githubgithub.com/flags-alt/abyss-c2★ 0

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10180 https://support.dlink.com/productinfo.aspx?m=DCS-2530L https://twitter.com/Dogonsecurity/status/1273251236167516161 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-25078