VYPR
Medium severity6.8NVD Advisory· Published Jun 16, 2021· Updated Jul 9, 2026

CVE-2021-34204

CVE-2021-34204

Description

D-Link DIR-2640-US 1.01B04 is affected by Insufficiently Protected Credentials. D-Link AC2600(DIR-2640) stores the device system account password in plain text. It does not use linux user management. In addition, the passwords of all devices are the same, and they cannot be modified by normal users. An attacker can easily log in to the target router through the serial port and obtain root privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • D-Link/DIR-2640-USdescription
  • Dlink/DIR-2640llm-fuzzy
    Range: =1.01B04

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.