#VU56984 Path traversal in DAP-2020 - CVE-2021-34860

Cybersecurity Help s.r.o.

Published: 2021-10-01

Vulnerability identifier: #VU56984

Vulnerability risk: Low

CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-34860

CWE-ID: CWE-22

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
DAP-2020
Hardware solutions / Routers & switches, VoIP, GSM, etc

Vendor: D-Link

Description

The vulnerability allows a remote attacker to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences within the "getpage" parameter. A remote attacker on the local network can send a specially crafted HTTP request and read arbitrary files on the system.

Mitigation
Install update from vendor's website.

Vulnerable software versions

DAP-2020: 1.01

External links
https://www.zerodayinitiative.com/advisories/ZDI-21-976/
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10201

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in D-Link DAP-2020