VYPR

DVA-5592

by Dlink

CVEs (3)

  • CVE-2019-6969Aug 2, 2019
    risk 0.00cvss epss 0.03

    The web interface of the D-Link DVA-5592 20180823 is vulnerable to an authentication bypass that allows an unauthenticated user to have access to sensitive information such as the Wi-Fi password and the phone number (if VoIP is in use).

  • CVE-2019-6968Aug 2, 2019
    risk 0.00cvss epss 0.01

    The web interface of the D-Link DVA-5592 20180823 is vulnerable to XSS because HTML form parameters are directly reflected.

  • CVE-2018-17777Dec 18, 2018
    risk 0.00cvss epss 0.02

    An issue was discovered on D-Link DVA-5592 A1_WI_20180823 devices. If the PIN of the page "/ui/cbpc/login" is the default Parental Control PIN (0000), it is possible to bypass the login form by editing the path of the cookie "sid" generated by the page. The attacker will have…