VYPR

COVR-2600R

by Dlink

CVEs (2)

  • CVE-2018-20432Sep 14, 2020
    risk 0.02cvss epss 0.04

    D-Link COVR-2600R and COVR-3902 Kit before 1.01b05Beta01 use hardcoded credentials for telnet connection, which allows unauthenticated attackers to gain privileged access to the router, and to extract sensitive data or modify the configuration.

  • CVE-2024-44674Oct 7, 2024
    risk 0.00cvss epss 0.04

    D-Link COVR-2600R FW101b05 is vulnerable to Buffer Overflow. In the function sub_24E28, the HTTP_REFERER is obtained through an environment variable, and this field is controllable, allowing it to be used as the value for src.