VYPR

NPAPI extension

by Dlink

CVEs (2)

  • CVE-2017-14420MedSep 13, 2017
    risk 0.38cvss 5.9epss 0.01

    The D-Link NPAPI extension, as used on D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware through FW208WWb02) devices, does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and…

  • CVE-2017-14419MedSep 13, 2017
    risk 0.38cvss 5.9epss 0.01

    The D-Link NPAPI extension, as used on D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware through FW208WWb02) devices, participates in mydlink Cloud Services by establishing a TCP relay service for HTTP, even though a TCP relay service…