NULL pointer dereference in Dlink Dap-2310
CVE-2021-28840
Null Pointer Dereference vulnerability exists in D-Link DAP-2310 2.07.RC031, DAP-2330 1.07.RC028, DAP-2360 2.07.RC043, DAP-2553 3.06.RC027, DAP-2660 1.13.RC074, DAP-2690 3.16.RC100, DAP-2695 1.17.RC063, DAP-3320 1.01.RC014 and DAP-3662 1.0…
EPSS: 0.022 (80.7th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.
Affected products
- Dlink Dap-2310
- Dlink Dap-2310_firmware — versions 2.0.7.rc031
- Dlink Dap-2330
- Dlink Dap-2330_firmware — versions 1.07.rc028
- Dlink Dap-2360
- Dlink Dap-2360_firmware — versions 2.07.rc043
- Dlink Dap-2553
- Dlink Dap-2553_firmware — versions 3.06.rc027
- Dlink Dap-2660
- Dlink Dap-2660_firmware — versions 1.13.rc074
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_MISC, Vendor Advisory)
- cve@mitre.org (Exploit, Third Party Advisory, x_refsource_MISC)
- cve@mitre.org (Third Party Advisory, x_refsource_MISC)
Frequently asked questions
- What is CVE-2021-28840?
- CVE-2021-28840 is a high-severity vulnerability in Dlink Dap-2310, classified under NULL Pointer Dereference. CVSS score: 7.5/10. Published 2021-08-10.
- How severe is CVE-2021-28840?
- High severity. CVSS v3 base score is 7.5 out of 10.