An access control issue in the component form2alg.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to set the agl service of the device via a crafted POST request.
2025-01-16T19:15:29.413
2025-05-02T19:31:48.893
Analyzed
CVSSv3.1: 5.3 (MEDIUM)
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Operating System | dlink | dir-816_firmware | 1.10cnb05_r1b011d88210 | Yes |
Hardware | dlink | dir-816 | a2 | No |