CVE-2017-7852 · threatengine.sh

Home/CVE/D-Link DCS cameras have a weak/insecure CrossDomain.XML file that allows sites hosting malicious Flash objects to access

CVE

CVE-2017-7852

D-Link DCS cameras have a weak/insecure CrossDomain.XML file that allows sites hosting malicious Flash objects to access

D-Link DCS cameras have a weak/insecure CrossDomain.XML file that allows sites hosting malicious Flash objects to access and/or change the device's settings via a CSRF attack. This is because of the 'allow-access-from domain' child element set to *, thus accepting requests from any domain. If a victim logged into the camera's web console visits a malicious site hosting a malicious Flash file from another Browser tab, the malicious Flash file then can send requests to the victim's DCS series Camera without knowing the credentials.

An attacker can host a malicious Flash file that can retrieve Live Feeds or information from the victim's DCS series Camera, add new admin users, or make other changes to the device. Known affected devices are DCS-933L with firmware before 1.13.05, DCS-5030L, DCS-5020L, DCS-2530L, DCS-2630L, DCS-930L, DCS-932L, and DCS-932LB1.

HIGH · CVSS 8.8 EPSS 0.00498

Act now

Public exploit or PoC is available
CVSS base score ≥ 7.0

Sigma rules0 YARA rules0

⬡

Weakness Classification

CWE-352Cross-Site Request Forgery (CSRF)

▤

Affected Products & Versions

31

dlink dcs-2230l firmware<= 1.03.01
dlink dcs-2310l firmware<= 1.08.01
dlink dcs-2332l firmware<= 1.08.01
dlink dcs-6010l firmware<= 1.15.01
dlink dcs-7010l firmware<= 1.08.01
dlink dcs-2530l firmware<= 1.00.21
dlink dcs-930l firmware<= 1.15.04
dlink dcs-930l firmware<= 2.13.15
Show all 31 affected productsdlink dcs-932l firmware<= 1.13.04
dlink dcs-932l firmware<= 2.13.15
dlink dcs-934l firmware<= 1.04.15
dlink dcs-942l firmware<= 1.27
dlink dcs-942l firmware<= 2.11.03
dlink dcs-931l firmware<= 1.13.05
dlink dcs-933l firmware<= 1.13.05
dlink dcs-5009l firmware<= 1.07.05
dlink dcs-5010l firmware<= 1.13.05
dlink dcs-5020l firmware<= 1.13.05
dlink dcs-5000l firmware<= 1.02.02
dlink dcs-5025l firmware<= 1.02.10
dlink dcs-5030l firmware<= 1.01.06
dlink dcs-2210l firmware<= 1.03.01
dlink dcs-2136l firmware<= 1.04.01
dlink dcs-2132l firmware<= 1.08.01
dlink dcs-7000l firmware<= 1.04.00
dlink dcs-6212l firmware<= 1.00.12
dlink dcs-5029l firmware<= 1.12.00
dlink dcs-2310l firmware<= 2.03.00
dlink dcs-2330l firmware<= 1.13.00
dlink dcs-2132l firmware<= 2.12.00
dlink dcs-5222l firmware<= 2.12.00

⚠

Public Exploits & PoCs

2

webappsD-Link DCS Series Cameras - Insecure Crossdomain2017-02-22

pocwww.qualys.com · qsa-2017-02-22.pdfwww.qualys.com

▣

Scoring & Timeline

8.8

HIGH · CVSS v3.1 · cve@mitre.org

View on NVD

Attack Vector

Network Adjacent Local Physical

Attack Complexity

Low High

Privileges Required

None Low High

User Interaction

None Required

Scope

Unchanged Changed

Confidentiality

None Low High

Integrity

None Low High

Availability

None Low High

Published to NVD24 Apr 2017 · 10:59 AM

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin