Denial of Service Vulnerability in D-Link Access Points
CVE-2019-14333
5.5MEDIUM
Summary
A vulnerability has been identified in certain D-Link access points that allows for a pre-authenticated denial of service attack. This occurs when an attacker exploits a long action parameter in the admin.cgi interface, leading to potential disruption of service. Devices affected include the D-Link 6600-AP and the DWL-3600AP, specifically versions running Ax 4.2.0.14. Administrators are advised to review security advisories and take preventive measures.
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved