D-Link DIR-300 REVA FIRMWARE v1.06B05_WW contains hardcoded credentials in the Telnet service.
The router firmware contains hardcoded login credentials for the Telnet service that the user cannot change or remove. An attacker with network access to the device can exploit these known credentials to log in without any prior authorization. Since the attack requires no privileges, user interaction, or special conditions, the vulnerability is exceptionally easy to exploit.
An attacker can gain full, unauthorized access to the device with administrative privileges, enabling modification of network configuration, eavesdropping on network traffic, and leveraging the device as an entry point for further attacks on internal infrastructure.
Apply patches available from the manufacturer according to the references. As an immediate remedial action, it is recommended to block access to the Telnet service at the firewall level and restrict access to the device management interface exclusively to trusted IP addresses. If the manufacturer does not provide updates, consider replacing the device with a supported alternative.
D-Link DIR-300 REVA with firmware version v1.06B05_WW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HDlink Dir 300
HWDlinkaDlink Dir 300 Firmware
OSDlink1.06b05_ww
Related vulnerabilities
D-Link DIR-300/DIR-600 — nieuwierzytelniony OS command injection w command.php
D-Link DIR-300/DIR-600: nieuwierzytelniony command injection z uprawnieniami root
D-Link DIR-300 firmware <=REVA1.06 and <=REVB2.06 is vulnerable to File inclusion via /model/__lang_msg.php.
An issue was discovered in soap.cgi?service=WANIPConn1 on D-Link DIR-845 before v1.02b03, DIR-600 before v2.17...
An OS command injection vulnerability exists in multiple D-Link routers (confirmed on DIR-300 rev A v1.05 and ...