CVE-2018-20675
CRITICALD-Link DIR-822/DIR-850L/DIR-880L Authentication Bypass
Title source: llmDescription
D-Link DIR-822 C1 before v3.11B01Beta, DIR-822-US C1 before v3.11B01Beta, DIR-850L A* before v1.21B08Beta, DIR-850L B* before v2.22B03Beta, and DIR-880L A* before v1.20B02Beta devices allow authentication bypass.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://securityadvisories.dlink.com/announcement/publication.aspx?name=SAP10101
Scores
CVSS v3
9.8
EPSS
0.0042
EPSS Percentile
62.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-287
Status
published
Products (6)
dlink/dir-822-us_firmware
< 3.10b06
dlink/dir-822_firmware
< 3.10b06
dlink/dir-850l_firmware
2.22b02 beta
dlink/dir-850l_firmware
< 1.21b07
dlink/dir-880l_firmware
1.20b01 beta
dlink/dir-880l_firmware
< 1.07.b08
Published
Jan 09, 2019
Tracked Since
Feb 18, 2026