Vulnerabilities (CVE)

Filtered by vendor Dlink Subscribe

Filtered by product Dir-600 B1

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-18852	1 Dlink	14 Dir-600 B1, Dir-600 B1 Firmware, Dir-615 J1 and 11 more	2023-12-10	10.0 HIGH	9.8 CRITICAL
Certain D-Link devices have a hardcoded Alphanetworks user account with TELNET access because of /etc/config/image_sign or /etc/alpha_config/image_sign. This affects DIR-600 B1 V2.01 for WW, DIR-890L A1 v1.03, DIR-615 J1 v100 (for DCN), DIR-645 A1 v1.03, DIR-815 A1 v1.01, DIR-823 A1 v1.01, and DIR-842 C1 v3.00.
CVE-2017-12943	1 Dlink	2 Dir-600 B1, Dir-600 B1 Firmware	2023-12-10	5.0 MEDIUM	9.8 CRITICAL
D-Link DIR-600 Rev Bx devices with v2.x firmware allow remote attackers to read passwords via a model/__show_info.php?REQUIRE_FILE= absolute path traversal attack, as demonstrated by discovering the admin password.