{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T22:29:01.408","vulnerabilities":[{"cve":{"id":"CVE-2024-5296","sourceIdentifier":"zdi-disclosures@trendmicro.com","published":"2024-05-23T22:15:15.617","lastModified":"2025-08-06T14:25:33.860","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"D-Link D-View Use of Hard-coded Cryptographic Key Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of D-Link D-View. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the TokenUtils class. The issue results from a hard-coded cryptographic key. An attacker can leverage this vulnerability to bypass authentication on the system. Was ZDI-CAN-21991."},{"lang":"es","value":"Vulnerabilidad de omisión de autenticación de clave criptográfica codificada mediante D-Link D-View. Esta vulnerabilidad permite a atacantes remotos eludir la autenticación en las instalaciones afectadas de D-Link D-View. No se requiere autenticación para aprovechar esta vulnerabilidad. La falla específica existe dentro de la clase TokenUtils. El problema se debe a una clave criptográfica codificada. Un atacante puede aprovechar esta vulnerabilidad para eludir la autenticación en el sistema. Era ZDI-CAN-21991."}],"metrics":{"cvssMetricV30":[{"source":"zdi-disclosures@trendmicro.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"zdi-disclosures@trendmicro.com","type":"Secondary","description":[{"lang":"en","value":"CWE-321"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:dlink:d-view_8:2.0.1.28:*:*:*:*:*:*:*","matchCriteriaId":"1EA161F6-3740-4843-B4FA-E3CDC448E64C"}]}]}],"references":[{"url":"https://www.zerodayinitiative.com/advisories/ZDI-24-447/","source":"zdi-disclosures@trendmicro.com","tags":["Third Party Advisory"]},{"url":"https://www.zerodayinitiative.com/advisories/ZDI-24-447/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}}]}