virus logo Intrusion Prevention

Davolink.DVW.3200.Devices.Password.Disclosure

description-logoDescription

This indicates an attack attempt to exploit an Information Disclosure vulnerability in Davolink DVW-3200N.
The vulnerability is due to an error when the vulnerable software handles an HTTP request. A remote attacker may be able to exploit this to gain access to sensitive data, via an HTTP request.

affected-products-logoAffected Products

Davolink DVW-3200N version 1.00.05 and prior

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems

recomended-action-logoRecommended Actions

Apply the latest path from the vendor.
http://www.davolink.co.kr/sys/bbs/board.php?bo_table=0403&wr_id=50

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2024-07-23 28.831
Modified
 Name:Davolink.
DVW.
3200.
Router.
Password.
Disclosure:Davolink.
DVW.
3200.
Devices.
Password.
Disclosure
2019-05-31 14.624
Modified
 Sig Added
2019-05-23 14.619
Modified
 Default_action:pass:drop
2019-05-21 14.617
Modified
 Modified
2019-05-08 14.609
New

References

https://ics-cert.us-cert.gov/advisories/ICSA-18-212-01 45076
ID 47804
Created May 08, 2019
Updated Sep 12, 2024
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Exploit Prediction Score 18.52%
Default Action drop
Active
Affected OS Other
Affected App Other
Profile Type Information Disclosure