CVE-2011-4723

MEDIUM KEV

Dlink Dir-300 - Cleartext Storage

Title source: rule

Description

The D-Link DIR-300 router stores cleartext passwords, which allows context-dependent attackers to obtain sensitive information via unspecified vectors.

References (2)

[Broken Link] http://en.securitylab.ru/lab/PT-2011-30

[Third Party Advisory, US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2011-4723

Scores

CVSS v3 5.7

EPSS 0.1273

EPSS Percentile 93.9%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitation Intel

CISA KEV 2022-09-08

VulnCheck KEV 2018-07-13

ENISA EUVD EUVD-2011-4641

Classification

CWE

CWE-310 CWE-312

Status draft

Affected Products (1)

dlink/dir-300

Timeline

Published Dec 20, 2011

KEV Added Sep 08, 2022

Tracked Since Feb 18, 2026