D-Link Forums

Announcements => Security Advisories => Topic started by: GreenBay42 on April 12, 2018, 07:43:23 AM

Title: DGS-1510 Series - Reflected XSS Attack exploit
Post by: GreenBay42 on April 12, 2018, 07:43:23 AM: BETA firmware v1.50B023 has been released for the DGS-1510-series switch family.

Firmware - ftp://FTP2.DLINK.COM/SECURITY_ADVISEMENTS/DGS-1510/DGS-1510_REVA_FIRMWARE_v1.50B023.zip (ftp://FTP2.DLINK.COM/SECURITY_ADVISEMENTS/DGS-1510/DGS-1510_REVA_FIRMWARE_v1.50B023.zip)

Release Notes:

Fixed reflected XSS attack - CVE-2018-7859 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7859)

D-Link Security Advisement (http://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10082)

SMF 2.0.13 | SMF © 2016, Simple Machines