• January 24, 2021, 10:56:28 AM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: CVE-2020-25757, 25758, and 25759  (Read 229 times)

shuezh

  • Level 1 Member
  • *
  • Posts: 1
CVE-2020-25757, 25758, and 25759
« on: December 11, 2020, 09:21:15 AM »

https://threatpost.com/d-link-routers-zero-day-flaws/162064/

This blog post states that these 3 CVEs were assigned to the vulnerabilities outlined in https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10195.

support announcement from D-Link makes no mention of the CVES nor says which vulnerability is represented by which CVE. Does anyone have this information?

Thanks!
Logged

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49466
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: CVE-2020-25757, 25758, and 25759
« Reply #1 on: December 11, 2020, 01:54:26 PM »

Something to contact D-Link support about to see. I see there is recent updates dated a few days ago, 12/9.
Logged
Cable: 1Gb/50Mb>NetGear CAX80>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

GreenBay42

  • Administrator
  • Level 11 Member
  • *
  • Posts: 2614
Re: CVE-2020-25757, 25758, and 25759
« Reply #2 on: December 14, 2020, 06:48:04 AM »

I emailed the security team.
Logged

GreenBay42

  • Administrator
  • Level 11 Member
  • *
  • Posts: 2614
Re: CVE-2020-25757, 25758, and 25759
« Reply #3 on: December 14, 2020, 08:23:49 AM »

The CVEs were not assigned at the time of disclosure. The announcement on the support site has been updated.

https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10195

Logged