Vulnerability Description
On the D-Link DIR-615 before v20.12PTb04, if a victim logged in to the Router's Web Interface visits a malicious site from another Browser tab, the malicious site then can send requests to the victim's Router without knowing the credentials (CSRF). An attacker can host a page that sends a POST request to Form2File.htm that tries to upload Firmware to victim's Router. This causes the router to reboot/crash resulting in Denial of Service. An attacker may succeed in uploading malicious Firmware.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dlink | Dir-615 | <= 20.12ptb01 |
Related Weaknesses (CWE)
References
- ftp://ftp2.dlink.com/SECURITY_ADVISEMENTS/DIR-615/REVT/DIR-615_REVT_FIRMWARE_PATPatchVendor Advisory
- https://www.qualys.com/2017/03/12/qsa-2017-03-12/qsa-2017-03-12.pdfThird Party Advisory
- ftp://ftp2.dlink.com/SECURITY_ADVISEMENTS/DIR-615/REVT/DIR-615_REVT_FIRMWARE_PATPatchVendor Advisory
- https://www.qualys.com/2017/03/12/qsa-2017-03-12/qsa-2017-03-12.pdfThird Party Advisory
FAQ
What is CVE-2017-7404?
CVE-2017-7404 is a vulnerability with a CVSS score of 8.8 (HIGH). On the D-Link DIR-615 before v20.12PTb04, if a victim logged in to the Router's Web Interface visits a malicious site from another Browser tab, the malicious site then can send requests to the victim'...
How severe is CVE-2017-7404?
CVE-2017-7404 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-7404?
Check the references section above for vendor advisories and patch information. Affected products include: Dlink Dir-615.