Denial of Service Vulnerability in D-Link Access Points
CVE-2019-14333

5.5MEDIUM

Key Information:

Vendor

D-Link
Status
6600-ap Firmware
Vendor
CVE Published:
1 August 2019

What is CVE-2019-14333?

A vulnerability has been identified in certain D-Link access points that allows for a pre-authenticated denial of service attack. This occurs when an attacker exploits a long action parameter in the admin.cgi interface, leading to potential disruption of service. Devices affected include the D-Link 6600-AP and the DWL-3600AP, specifically versions running Ax 4.2.0.14. Administrators are advised to review security advisories and take preventive measures.

References

https://us.dlink.com/en/security-advisory
x_refsource_MISC
https://www.dlink.com/en/security-bulletin
x_refsource_MISC
http://packetstormsecurity.com/files/153840/D-Link-6600-A...
x_refsource_MISC

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.