CVE-2018-15517

HIGH EXPLOITED IN THE WILD NUCLEI

Dlink Central Wifimanager - SSRF

Title source: rule

Description

The MailConnect feature on D-Link Central WiFiManager CWM-100 1.03 r0098 devices is intended to check a connection to an SMTP server but actually allows outbound TCP to any port on any IP address, leading to SSRF, as demonstrated by an index.php/System/MailConnect/host/127.0.0.1/port/22/secure/ URI.

Nuclei Templates (1)

D-Link Central WifiManager - Server-Side Request Forgery

HIGHby gy741

References (2)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/150243/D-LINK-Central-WifiManager-CWM-100-1.03-r0098-Server-Side-Request-Forgery.html

[Exploit, Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2018/Nov/28

Scores

CVSS v3 8.6

EPSS 0.7687

EPSS Percentile 99.0%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

Details

VulnCheck KEV 2024-01-04

InTheWild.io 2021-04-18

CWE

CWE-918

Status published

Products (1)

dlink/central_wifimanager 1.03 r0098

Published Jan 31, 2019

Tracked Since Feb 18, 2026