CVE-2011-4723

moderate-risk

Published 2011-12-20

The D-Link DIR-300 router stores cleartext passwords, which allows context-dependent attackers to obtain sensitive information via unspecified vectors.

Do I need to act?

12.7% chance of exploitation in next 30 days

EPSS score — higher than 87% of all CVEs

CISA KEV: actively exploited in the wild

On the Known Exploited Vulnerabilities catalog — federal agencies must patch

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.7/10 Medium

ADJACENT_NETWORK / LOW complexity

Affected Products (1)

Dir-300

Affected Vendors

Dlink

References (3)

Broken Link http://en.securitylab.ru/lab/PT-2011-30

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2011-...

/ 100

moderate-risk

Severity 19/34 · Moderate

Exploitability 19/34 · Moderate

Exposure 5/34 · Minimal