Loading
An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. The unauthenticated /config/getuser endpoint allows for remote administrator password disclosure.
Use Dlink vendor hub and Dcs-4603 Firmware product page to widen CVE-2020-25078 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2020-25079 for nearby disclosures in the same product family.