Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
D-Link DIR-3040 < 1.13B03 Hotfix Multiple Vulnerabilities - Active Check
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
D-Link DIR-3040 devices are prone to multiple vulnerabilities.
Insight
Insight
The following vulnerabilities exist: - CVE-2021-21816: Syslog information disclosure vulnerability - CVE-2021-21817: Zebra IP Routing Manager information disclosure vulnerability - CVE-2021-21818: Zebra IP Routing Manager hard-coded password vulnerability - CVE-2021-21819: Libcli command injection vulnerability - CVE-2021-21820: Libcli Test Environment hard-coded password vulnerability
Affected Software
Affected Software
D-Link DIR-3040 devices. Other D-Link products might be affected as well.
Detection Method
Detection Method
Sends a crafted HTTP GET request and checks the response.
Solution
Solution
Update to 1.13B03 Hotfix or later.
Common Vulnerabilities and Exposures (CVE)
References
- https://support.dlink.com/resource/SECURITY_ADVISEMENTS/DIR-3040/REVA/
- https://talosintelligence.com/vulnerability_reports/TALOS-2021-1281
- https://talosintelligence.com/vulnerability_reports/TALOS-2021-1282
- https://talosintelligence.com/vulnerability_reports/TALOS-2021-1283
- https://talosintelligence.com/vulnerability_reports/TALOS-2021-1284
- https://talosintelligence.com/vulnerability_reports/TALOS-2021-1285