Vulnerability detail

Enriched intelligence for a single CVE

5.7

CVSS
Medium

CVE-2011-4723

PUBLISHED

The D-Link DIR-300 router stores cleartext passwords, which allows context-dependent attackers to obtain sensitive information via unspecified...

Exploited in the wild Low complexity No user interaction

Vendor: D-Link
Product: DIR-300
Published: Dec 20, 2011
EPSS: —

Description

The D-Link DIR-300 router stores cleartext passwords, which allows context-dependent attackers to obtain sensitive information via unspecified vectors.

cisa edge nessus_scanner

CVSS scores

CVSS v3.1 5.7 Medium

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVSS v2.0 6.8

AV:N/AC:L/Au:S/C:C/I:N/A:N

Exploitation status

Exploited in the wild

Recorded 2022-09-08 00:00:00 UTC · Source

SSVC decision points

Exploitation: active
Automatable: No
Technical impact: partial

References

http://en.securitylab.ru/lab/PT-2011-30

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source	Added
CISA	Sep 08, 2022

Scanner integrations

Scanner	Reference	Detected
Nessus	https://www.tenable.com/plugins/nessus/204917	Jun 02, 2025

Timeline

CVE ID Reserved

December 10, 2011
CVE Published to Public

December 20, 2011
Added to KEVIntel

September 08, 2022
Detected by Nessus

June 02, 2025