Vulnerability Description
D-Link DIR-505L SharePort Mobile Companion 1.01 and DIR-826L Wireless N600 Cloud Router 1.02 allows remote attackers to bypass authentication via a direct request when an authorized session is active.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dlink | Dir-826L Wireless N600 Cloud Router Firmware | 1.02 |
| Dlink | Dir-826L Wireless N600 Cloud Router | a1 |
| Dlink | Dir-505L Shareport Mobile Companion Firmware | 1.01 |
| Dlink | Dir-505L Shareport Mobile Companion | a1 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/122314/D-Link-DIR-505L-DIR-826L-Authenticat
- http://packetstormsecurity.com/files/122314/D-Link-DIR-505L-DIR-826L-Authenticat
FAQ
What is CVE-2013-4772?
CVE-2013-4772 is a vulnerability with a CVSS score of 9.3 (HIGH). D-Link DIR-505L SharePort Mobile Companion 1.01 and DIR-826L Wireless N600 Cloud Router 1.02 allows remote attackers to bypass authentication via a direct request when an authorized session is active.
How severe is CVE-2013-4772?
CVE-2013-4772 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-4772?
Check the references section above for vendor advisories and patch information. Affected products include: Dlink Dir-826L Wireless N600 Cloud Router Firmware, Dlink Dir-826L Wireless N600 Cloud Router, Dlink Dir-505L Shareport Mobile Companion Firmware, Dlink Dir-505L Shareport Mobile Companion.