Sign in Get started

← All advisories

Medium severity6.1NVD Advisory· Published Sep 13, 2017· Updated May 13, 2026

CVE-2017-14415

CVE-2017-14415

Description

D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices have XSS in the action parameter to htdocs/web/sitesurvey.php.

Affected products

2

Dlink/Dir 850l Firmware2 versions
cpe:2.3:o:dlink:dir-850l_firmware:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:dlink:dir-850l_firmware:*:*:*:*:*:*:*:*range: <fw114wwb07_h2ab
- cpe:2.3:o:dlink:dir-850l_firmware:fw114wwb07_h2ab:beta1:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

pierrekim.github.io/blog/2017-09-08-dlink-850l-mydlink-cloud-0days-vulnerabilities.htmlnvdExploitThird Party Advisory

News mentions

0

No linked articles in our index yet.