D-Link Forums

Announcements => Security Advisories => Topic started by: shuezh on December 11, 2020, 09:21:15 AM

Title: CVE-2020-25757, 25758, and 25759
Post by: shuezh on December 11, 2020, 09:21:15 AM

https://threatpost.com/d-link-routers-zero-day-flaws/162064/

This blog post states that these 3 CVEs were assigned to the vulnerabilities outlined in https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10195.

support announcement from D-Link makes no mention of the CVES nor says which vulnerability is represented by which CVE. Does anyone have this information?

Thanks!

Title: Re: CVE-2020-25757, 25758, and 25759
Post by: FurryNutz on December 11, 2020, 01:54:26 PM

Something to contact D-Link support about to see. I see there is recent updates dated a few days ago, 12/9.

Title: Re: CVE-2020-25757, 25758, and 25759
Post by: GreenBay42 on December 14, 2020, 06:48:04 AM

I emailed the security team.

Title: Re: CVE-2020-25757, 25758, and 25759
Post by: GreenBay42 on December 14, 2020, 08:23:49 AM

The CVEs were not assigned at the time of disclosure. The announcement on the support site has been updated.

https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10195 (https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10195)