Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

D-Link DIR-3040 < 1.13B03 Hotfix Multiple Vulnerabilities - Active Check

Information

Severity

Severity

High

Family

Family

Web application abuses

CVSSv2 Base

CVSSv2 Base

7.5

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Solution Type

Solution Type

Vendor Patch

Created

Created

2 years ago

Modified

Modified

2 years ago

Summary

D-Link DIR-3040 devices are prone to multiple vulnerabilities.

Insight

Insight

The following vulnerabilities exist: - CVE-2021-21816: Syslog information disclosure vulnerability - CVE-2021-21817: Zebra IP Routing Manager information disclosure vulnerability - CVE-2021-21818: Zebra IP Routing Manager hard-coded password vulnerability - CVE-2021-21819: Libcli command injection vulnerability - CVE-2021-21820: Libcli Test Environment hard-coded password vulnerability

Affected Software

Affected Software

D-Link DIR-3040 devices. Other D-Link products might be affected as well.

Detection Method

Detection Method

Sends a crafted HTTP GET request and checks the response.

Solution

Solution

Update to 1.13B03 Hotfix or later.

Common Vulnerabilities and Exposures (CVE)