{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-17T02:12:47.974","vulnerabilities":[{"cve":{"id":"CVE-2019-18852","sourceIdentifier":"cve@mitre.org","published":"2019-11-11T14:15:10.697","lastModified":"2024-11-21T04:33:42.843","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Certain D-Link devices have a hardcoded Alphanetworks user account with TELNET access because of /etc/config/image_sign or /etc/alpha_config/image_sign. This affects DIR-600 B1 V2.01 for WW, DIR-890L A1 v1.03, DIR-615 J1 v100 (for DCN), DIR-645 A1 v1.03, DIR-815 A1 v1.01, DIR-823 A1 v1.01, and DIR-842 C1 v3.00."},{"lang":"es","value":"Determinados dispositivos D-Link, poseen una cuenta de usuario de Alphanetworks embebida con acceso de TELNET debido a etc/config/image_sign o /etc/alpha_config/image_sign. Esto afecta a DIR-600 B1 versión V2.01 para WW, DIR-890L A1 versión v1.03, DIR-615 J1 versión v100 (para DCN), DIR-645 A1 versión v1.03, DIR-815 A1 versión v1.01, DIR-823 A1 versión v1.01 y DIR-842 C1 versión v3.00."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:C/A:C","baseScore":10.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-319"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:dlink:dir-600_b1_firmware:2.01:*:*:*:*:*:*:*","matchCriteriaId":"D5822C40-63B4-4C38-BB44-30C890B7D3CB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:dlink:dir-600_b1:-:*:*:*:*:*:*:*","matchCriteriaId":"D01EA1FD-0D5E-466E-8866-119E58379185"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:dlink:dir-615_j1_firmware:100:*:*:*:*:*:*:*","matchCriteriaId":"91B9B0C2-0823-4C78-BDA7-66E618ACA1C1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:dlink:dir-615_j1:-:*:*:*:*:*:*:*","matchCriteriaId":"A573F4F5-3783-40A1-BD4A-02D08EDC660F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:dlink:dir-645_a1_firmware:1.03:*:*:*:*:*:*:*","matchCriteriaId":"8309559B-540F-42AC-AD7A-CF0D26E711F1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:dlink:dir-645_a1:-:*:*:*:*:*:*:*","matchCriteriaId":"C4637D9F-F585-4E78-805B-C6FD2A1F8569"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:dlink:dir-815_a1_firmware:1.01:*:*:*:*:*:*:*","matchCriteriaId":"1F38E5FB-3BF9-421B-B8B3-E766160FEE9D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:dlink:dir-815_a1:-:*:*:*:*:*:*:*","matchCriteriaId":"13F27579-BF50-4B02-A8E6-CB87CA9BD9B4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:dlink:dir-823_a1_firmware:1.01:*:*:*:*:*:*:*","matchCriteriaId":"761B7A67-0762-4A9A-89D1-85A7CF60B952"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:dlink:dir-823_a1:-:*:*:*:*:*:*:*","matchCriteriaId":"AD2A9CE7-96F0-43B5-9C2C-28D3B7F6AA8F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:dlink:dir-842_c1_firmware:3.00:*:*:*:*:*:*:*","matchCriteriaId":"AE29AFFE-21B1-4BF2-9F31-46229F874F5F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:dlink:dir-842_c1:-:*:*:*:*:*:*:*","matchCriteriaId":"0D6B838C-46CA-4334-97AD-8E96CADCC7E3"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:dlink:dir-890l_a1_firmware:1.03:*:*:*:*:*:*:*","matchCriteriaId":"9F3DDDE6-8254-4E73-8042-2EE1DEB374F1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:dlink:dir-890l_a1:-:*:*:*:*:*:*:*","matchCriteriaId":"CE05B21E-C419-4443-A638-329EAC03CDF9"}]}]}],"references":[{"url":"https://github.com/ChandlerChin/Dlink_vuls/blob/master/A%20hard%20coded%20telnet%20user%20was%20discovered%20in%20multiple%20Dlink%20routers.pdf","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://github.com/ChandlerChin/Dlink_vuls/blob/master/A%20hard%20coded%20telnet%20user%20was%20discovered%20in%20multiple%20Dlink%20routers.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]}]}}]}