Details of VAR-201805-0206

ID

VAR-201805-0206

CVE

CVE-2017-17020

TITLE

plural D-Link Command injection vulnerability in product firmware

Trust: 0.8

sources: JVNDB: JVNDB-2017-013386

DESCRIPTION

On D-Link DCS-5009 devices with firmware 1.08.11 and earlier, DCS-5010 devices with firmware 1.14.09 and earlier, and DCS-5020L devices with firmware before 1.15.01, command injection in alphapd (binary responsible for running the camera's web server) allows remote authenticated attackers to execute code through sanitized /setSystemAdmin user input in the AdminID field being passed directly to a call to system. D-Link DCS-5009 , DCS-5010 ,and DCS-5020L The device firmware contains a command injection vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. The D-Link DCS-5009, DCS-5010 and DCS-5020L are all different types of network camera products from D-Link. Alphapd is one of the web servers. A remote code execution vulnerability exists in D-LinkDCS-5009 with firmware version 1.08.11 and earlier, DCS-5010 with firmware version 1.14.09 and earlier, and alphapd in DCS-5020L with firmware prior to 1.15.01

Trust: 2.34

sources: NVD: CVE-2017-17020 // JVNDB: JVNDB-2017-013386 // CNVD: CNVD-2018-10226 // VULHUB: VHN-108001 // VULMON: CVE-2017-17020

IOT TAXONOMY

category:	['Network device']	sub_category:	-	Trust: 0.6
category:	['camera device']	sub_category:	camera	Trust: 0.1

sources: OTHER: None // CNVD: CNVD-2018-10226

AFFECTED PRODUCTS

vendor:	d link	model:	dcs-5020l	scope:	lt	version:	1.15.01	Trust: 1.4
vendor:	dlink	model:	dcs-5020l	scope:	lte	version:	1.14.09	Trust: 1.0
vendor:	dlink	model:	dcs-5009	scope:	lte	version:	1.08.11	Trust: 1.0
vendor:	dlink	model:	dcs-5010	scope:	lte	version:	1.14.09	Trust: 1.0
vendor:	d link	model:	dcs-5009l	scope:	lte	version:	1.08.11	Trust: 0.8
vendor:	d link	model:	dcs-5010l	scope:	lte	version:	1.14.09	Trust: 0.8
vendor:	d link	model:	dcs-5009	scope:	lte	version:	<=1.08.11	Trust: 0.6
vendor:	d link	model:	dcs-5010	scope:	lte	version:	<=1.14.09	Trust: 0.6
vendor:	d link	model:	dcs-5010	scope:	eq	version:	1.14.09	Trust: 0.6
vendor:	d link	model:	dcs-5009	scope:	eq	version:	1.08.11	Trust: 0.6
vendor:	d link	model:	dcs-5020l	scope:	eq	version:	1.14.09	Trust: 0.6

sources: CNVD: CNVD-2018-10226 // JVNDB: JVNDB-2017-013386 // CNNVD: CNNVD-201805-022 // NVD: CVE-2017-17020

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-17020
value:	HIGH
Trust: 1.0
NVD:	CVE-2017-17020
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2018-10226
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201805-022
value:	HIGH
Trust: 0.6
VULHUB:	VHN-108001
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2017-17020
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-17020
severity:	MEDIUM
baseScore:	6.5
vectorString:	AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
CNVD:	CNVD-2018-10226
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-108001
severity:	MEDIUM
baseScore:	6.5
vectorString:	AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-17020
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2018-10226 // VULHUB: VHN-108001 // VULMON: CVE-2017-17020 // JVNDB: JVNDB-2017-013386 // CNNVD: CNNVD-201805-022 // NVD: CVE-2017-17020

PROBLEMTYPE DATA

problemtype:	CWE-78	Trust: 1.1
problemtype:	CWE-77	Trust: 0.9

sources: VULHUB: VHN-108001 // JVNDB: JVNDB-2017-013386 // NVD: CVE-2017-17020

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201805-022

TYPE

operating system commend injection

Trust: 0.6

sources: CNNVD: CNNVD-201805-022

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-013386

PATCH

title:	DCS-5020L/5010L/5009L :: CVE-2017-17020 Authenticated RCE vulnerability	url:	http://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10084	Trust: 0.8
title:	Patch for D-LinkDCS-5009, DCS-5010, and DCS-5020L Remote Code Execution Vulnerabilities	url:	https://www.cnvd.org.cn/patchInfo/show/130047	Trust: 0.6
title:	D-Link DCS-5009 , DCS-5010 and DCS-5020L Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=79767	Trust: 0.6

sources: CNVD: CNVD-2018-10226 // JVNDB: JVNDB-2017-013386 // CNNVD: CNNVD-201805-022

EXTERNAL IDS

db:	NVD	id:	CVE-2017-17020	Trust: 3.3
db:	DLINK	id:	SAP10084	Trust: 2.4
db:	JVNDB	id:	JVNDB-2017-013386	Trust: 0.8
db:	CNNVD	id:	CNNVD-201805-022	Trust: 0.7
db:	CNVD	id:	CNVD-2018-10226	Trust: 0.6
db:	OTHER	id:	NONE	Trust: 0.1
db:	VULHUB	id:	VHN-108001	Trust: 0.1
db:	VULMON	id:	CVE-2017-17020	Trust: 0.1

sources: OTHER: None // CNVD: CNVD-2018-10226 // VULHUB: VHN-108001 // VULMON: CVE-2017-17020 // JVNDB: JVNDB-2017-013386 // CNNVD: CNNVD-201805-022 // NVD: CVE-2017-17020

REFERENCES

url:	http://supportannouncement.us.dlink.com/announcement/publication.aspx?name=sap10084	Trust: 2.4
url:	https://www.fidusinfosec.com/dlink-dcs-5030l-remote-code-execution-cve-2017-17020/	Trust: 1.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-17020	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-17020	Trust: 0.8
url:	https://ieeexplore.ieee.org/abstract/document/10769424	Trust: 0.1
url:	https://cwe.mitre.org/data/definitions/78.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/142922	Trust: 0.1

sources: OTHER: None // CNVD: CNVD-2018-10226 // VULHUB: VHN-108001 // VULMON: CVE-2017-17020 // JVNDB: JVNDB-2017-013386 // CNNVD: CNNVD-201805-022 // NVD: CVE-2017-17020

SOURCES

db:	OTHER	id:	-
db:	CNVD	id:	CNVD-2018-10226
db:	VULHUB	id:	VHN-108001
db:	VULMON	id:	CVE-2017-17020
db:	JVNDB	id:	JVNDB-2017-013386
db:	CNNVD	id:	CNNVD-201805-022
db:	NVD	id:	CVE-2017-17020

LAST UPDATE DATE

2025-01-30T19:36:35.033000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2018-10226	date:	2018-05-24T00:00:00
db:	VULHUB	id:	VHN-108001	date:	2019-10-03T00:00:00
db:	VULMON	id:	CVE-2017-17020	date:	2019-10-03T00:00:00
db:	JVNDB	id:	JVNDB-2017-013386	date:	2018-07-02T00:00:00
db:	CNNVD	id:	CNNVD-201805-022	date:	2019-10-23T00:00:00
db:	NVD	id:	CVE-2017-17020	date:	2024-11-21T03:17:21.780

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2018-10226	date:	2018-05-23T00:00:00
db:	VULHUB	id:	VHN-108001	date:	2018-05-01T00:00:00
db:	VULMON	id:	CVE-2017-17020	date:	2018-05-01T00:00:00
db:	JVNDB	id:	JVNDB-2017-013386	date:	2018-07-02T00:00:00
db:	CNNVD	id:	CNNVD-201805-022	date:	2018-05-02T00:00:00
db:	NVD	id:	CVE-2017-17020	date:	2018-05-01T16:29:00.210