Denial of Service Vulnerability in D-Link DWR-932B Router
CVE-2016-10186

7.5HIGH

Key Information:

Vendor
D-Link
Status
Dwr-932b Firmware
Vendor
CVE Published:
30 January 2017

Summary

The D-Link DWR-932B router has a configuration oversight in the /var/miniupnpd.conf file, which lacks appropriate deny rules. This vulnerability may allow unauthorized access to network functionalities, potentially exposing users to various threats and unauthorized actions on their devices. It is crucial for users to review their router configurations and apply any relevant security measures to mitigate the risks associated with this issue.

References

https://pierrekim.github.io/blog/2016-09-28-dlink-dwr-932...
x_refsource_MISC
http://www.securityfocus.com/bid/95877
vdb-entryx_refsource_BID

EPSS Score

8% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.