CVE-2018-10618
Description
Davolink DVW-3200N all version prior to Version 1.00.06. The device generates a weak password hash that is easily cracked, allowing a remote attacker to obtain the password for the device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Davolink DVW-3200N routers prior to version 1.00.06 use a weak password hash that can be easily cracked, allowing remote attackers to obtain device credentials.
Vulnerability
The Davolink DVW-3200N router, all versions prior to 1.00.06, generates a weak password hash using insufficient computational effort (CWE-916). The password is stored as a base64-encoded string in the device's web interface, accessible on port 88. This weak hash can be easily cracked, allowing remote attackers to recover the plaintext password. [1][2]
Exploitation
An attacker can remotely access the device's web interface on port 88 without authentication. By sending an HTTP request to http://:88, the response contains a JavaScript variable user_passwd with a base64-encoded password. The attacker can decode this base64 string to obtain the plaintext password. The exploit requires only network access to the device; no authentication or user interaction is needed. [2]
Impact
Successful exploitation allows an attacker to obtain the device's administrative password. With this password, the attacker can gain full control over the router, potentially leading to unauthorized access, data exfiltration, or further network compromise. The CVSS v3 score is 9.8 (Critical) due to the ease of exploitation and high impact on confidentiality, integrity, and availability. [1]
Mitigation
Davolink released firmware version 1.00.06 to address this vulnerability. Users should update to this version from the vendor's website. As a workaround, minimize network exposure by not exposing the device's web interface to the internet, and use firewalls to restrict access. No known public exploits specifically target this vulnerability as of the advisory date. [1]
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Davolink/DVW-3200Nv5Range: all version prior to Version 1.00.06
Patches
0No patches discovered yet.
Vulnerability mechanics
Root cause
"The device uses a password hash with insufficient computational effort (weak hashing algorithm), making the hash trivially crackable."
Attack vector
An unauthenticated remote attacker can obtain the device's password hash (e.g., by capturing network traffic or accessing an exposed interface) and then crack the weak hash offline using commodity hardware or publicly available tools [ref_id=1]. The vulnerability is exploitable remotely with low skill level and requires no authentication or user interaction [ref_id=1]. The CVSS vector string (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) confirms the attack is over the network with low complexity and no privileges required [ref_id=1].
Affected code
The advisory does not specify the exact file or function responsible for password hashing in the DVW-3200N firmware [ref_id=1]. The vulnerability affects all DVW-3200N versions prior to 1.00.06 [ref_id=1].
What the fix does
The advisory directs users to upgrade to firmware version 1.00.06, which Davolink made available for download [ref_id=1]. No patch diff is provided in the bundle, but the fix presumably replaces the weak hashing algorithm with a computationally expensive one (e.g., bcrypt, scrypt, or PBKDF2) to resist brute-force and dictionary attacks [ref_id=1]. The vendor also recommends defensive measures such as network segmentation and VPN usage to reduce exposure [ref_id=1].
Preconditions
- networkThe attacker must be able to reach the device over the network (no authentication required).
- inputThe attacker must obtain the weak password hash (e.g., via packet capture or an exposed endpoint).
Reproduction
The exploit-db reference (https://www.exploit-db.com/exploits/45076/) is listed as a public PoC but its content is not included in the bundle. Therefore, reproduction steps cannot be provided.
Generated on May 26, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
3- www.exploit-db.com/exploits/45076/mitreexploitx_refsource_EXPLOIT-DB
- www.securityfocus.com/bid/104940mitrevdb-entryx_refsource_BID
- ics-cert.us-cert.gov/advisories/ICSA-18-212-01mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.