VYPR

DCS-2670L

by Dlink

CVEs (2)

  • CVE-2020-25078KEVSep 2, 2020
    risk 0.20cvss epss 0.98

    An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. The unauthenticated /config/getuser endpoint allows for remote administrator password disclosure.

  • CVE-2020-25079KEVSep 2, 2020
    risk 0.15cvss epss 0.53

    An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. cgi-bin/ddns_enc.cgi allows authenticated command injection.