Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
D-link DIR-825AC G1 devices have Insufficient Compartmentalization between a host network and a guest network that are established by the same device. They forward ARP requests, which are sent as broadcast packets, between the host and the guest networks. To use this leakage as a direct covert channel, the sender can trivially issue an ARP request to an arbitrary computer on the network. (In general, some routers restrict ARP forwarding only to requests destined for the network's subnet mask, but these routers did not restrict this traffic in any way. Depending on this factor, one must use either the lower 8 bits of the IP address, or the entire 32 bits, as the data payload.)
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
D-Link DIR-825AC G1 访问控制错误漏洞
Vulnerability Description
D-Link D-link DIR-825AC G1是中国台湾友讯(D-Link)公司的一款无线路由器。 D-link DIR-825AC G1中存在安全漏洞,该漏洞源于程序没有充分隔离同一设备上的主人网络和访客网络。攻击者可通过发送特制的ARP请求利用该漏洞在同一设备的两个隔离网段间传输数据。
CVSS Information
N/A
Vulnerability Type
N/A