← Back

Dir 130 Firmware

dir-130_firmware

Vendor: D Link • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2017-3192
1D Link
2Dir 130 Firmware
Dir 330 Firmware
May 13, 2026
Dec 16, 2017
N/A· v4
9.8 CRITICAL· v3
5.0 MEDIUM· v2
D-Link DIR-130 firmware version 1.23 and DIR-330 firmware version 1.12 do not sufficiently protect administrator credentials. The tools_admin.asp page discloses the administrator password in base64 encoding in the return...Show more
D-Link DIR-130 firmware version 1.23 and DIR-330 firmware version 1.12 do not sufficiently protect administrator credentials. The tools_admin.asp page discloses the administrator password in base64 encoding in the returned web page. A remote attacker with access to this page (potentially through a authentication bypass such as CVE-2017-3191) may obtain administrator credentials for the device.Show less
CVE-2017-3191
1D Link
2Dir 130 Firmware
Dir 330 Firmware
May 13, 2026
Dec 16, 2017
N/A· v4
9.8 CRITICAL· v3
5.0 MEDIUM· v2
D-Link DIR-130 firmware version 1.23 and DIR-330 firmware version 1.12 are vulnerable to authentication bypass of the remote login page. A remote attacker that can access the remote management login page can manipulate t...Show more
D-Link DIR-130 firmware version 1.23 and DIR-330 firmware version 1.12 are vulnerable to authentication bypass of the remote login page. A remote attacker that can access the remote management login page can manipulate the POST request in such a manner as to access some administrator-only pages such as tools_admin.asp without credentials.Show less