KEVIntel
Back to KEVs
8.0
CVSS
High

CVE-2014-100005

PUBLISHED

Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DIR-600 router (rev. Bx) with firmware before 2.17b02 allow remote attackers...

Exploited in the wild Low complexity No user interaction
Vendor
D-Link
Product
DIR-600 router
Published
Jan 13, 2015
EPSS

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DIR-600 router (rev. Bx) with firmware before 2.17b02 allow remote attackers to hijack the authentication of administrators for requests that (1) create an administrator account or (2) enable remote management via a crafted configuration module to hedwig.cgi, (3) activate new configuration settings via a SETCFG,SAVE,ACTIVATE action to pigwidgeon.cgi, or (4) send a ping via a ping action to diagnostic.php.

php cisa edge metasploit nessus_scanner

CVSS scores

CVSS v3.1 8.0 High

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2.0 6.8

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitation status

Exploited in the wild

Recorded 2024-05-16 00:00:00 UTC · Source

SSVC decision points

Exploitation
active
Automatable
No
Technical impact
total

References

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source Added
CISA May 16, 2024

Scanner integrations

Scanner Reference Detected
Metasploit https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/dlink_diagnostic_exec_noauth.rb Apr 28, 2025
Nessus https://www.tenable.com/plugins/nessus/197733 May 23, 2024

Potential proof of concepts

These PoCs are unverified and could contain malware. Use at your own risk.

dlink_diagnostic_exec_noauth

metasploit · Created Unknown

Metasploit module for CVE-2014-100005

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Added to KEVIntel

  • Detected by Nessus

  • Detected by Metasploit