D-Link DAP-1320 A2-V1.21 Routers Information Disclosure Vulnerability CVE-2019-17505
- CVSSv3 Score
- Vulnerability description
D-Link DAP-1320 routers are prone to an information disclosure vulnerability.
- Risk description
The file uplink_info.xml doesnt require authorization and contains the SSID and PSK password. Successful exploitation would allow an attacker to gain the Wi-Fi credentials.
No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.
- Not available