Broken Access Control in D-Link DSL-2680 Router Web Interface
CVE-2019-19223

7.5HIGH

Key Information:

Vendor: D-Link
Status: Dsl-2680 Firmware
Vendor: CVE Published:; 4 March 2020

What is CVE-2019-19223?

The D-Link DSL-2680 router is susceptible to a Broken Access Control vulnerability in its web administration interface. This flaw permits an unauthenticated attacker to issue a reboot command through a straightforward GET request. As a result, attackers can disrupt the router's functionality and potentially render the device inoperable, compromising network availability and stability.