cvedb.io
CVE-2017-9542
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2017-06-11T23:29:00.167 · Last modified 2026-06-17T01:28:19.940

Summary

D-Link DIR-615 Wireless N 300 Router allows authentication bypass via a modified POST request to login.cgi. This issue occurs because it fails to validate the password field. Successful exploitation of this issue allows an attacker to take control of the affected device.

Affected products

d-link — dir-615_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when d-link ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.