COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2021-40655

CVE-2021-40655

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2024-05-16
Reference
https://nvd.nist.gov/vuln/detail/CVE-2021-40655
⌖ exploited in the wild shame 50/100 exploited-in-wild

D-Link DIR-605 routers contain an information disclosure vulnerability that allows attackers to obtain a username and password by forging a post request to the /getcfg.php page.

Players implicated

D-Link · vendorDIR-605 Router · product

Description

D-Link DIR-605 routers contain an information disclosure vulnerability that allows attackers to obtain a username and password by forging a post request to the /getcfg.php page.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.