CVE-2020-29322

HIGH

D-Link DIR-880L 1.07 - Info Disclosure

Title source: llm

Description

The D-Link router DIR-880L 1.07 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that allows an unauthenticated attacker to gain access to the firmware and to extract sensitive data.

References (1)

[Exploit, Third Party Advisory] https://cybersecurityworks.com/zerodays/cve-2020-29322-telnet-hardcoded-credentials.html

Scores

CVSS v3 7.5

EPSS 0.0059

EPSS Percentile 68.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Classification

CWE

CWE-522 CWE-798

Status published

Affected Products (1)

dlink/dir-880l_firmware

Timeline

Published Jun 04, 2021

Tracked Since Feb 18, 2026