all InfoSec news
Authentication Bypass in D-Link D-View 8
Sept. 19, 2023, 7 p.m. | Evan Grant
Tenable Research Advisories www.tenable.com
A researcher at Tenable discovered an authentication bypass vulnerability in D-Link D-View 8 v2.0.1.28.
D-View 8 uses a static key (D-Link) to protect the JWT token used in user authentication:
// webApi-0.0.1-SNAPSHOT.jar!com.dlink.dview8.webapi.utils.TokenUtils
public static String verifyToken(String token) {
if (Utils.isEmpty(token))
return null;
Algorithm algorithm = Algorithm.HMAC256("D-Link");
JWTVerifier verifier = JWT.require(algorithm).build();
DecodedJWT jwt = verifier.verify(token);
return jwt.getClaim("userId").asString();
}
D-View 8 supports login with an API key, but the supplied API key in the JWT token …
algorithm authentication authentication bypass bypass bypass vulnerability d-link dlink jar jwt jwt token key link protect public researcher return snapshot tenable token vulnerability
More from www.tenable.com / Tenable Research Advisories
PaperCut NG Unauthenticated XMLRPC Functionality
1 week, 6 days ago |
www.tenable.com
Citrix ShareFile Reflected XSS on Login Page
4 weeks, 1 day ago |
www.tenable.com
Unauthenticated Stack Buffer Overflows in Ivanti Avalanche
1 month, 1 week ago |
www.tenable.com
Reflected Cross-Site Scripting in AYS Popup Box WordPress Plugin
1 month, 3 weeks ago |
www.tenable.com
Authenticated SQL Injection in Advantech iView
1 month, 4 weeks ago |
www.tenable.com
Jobs in InfoSec / Cybersecurity
Business Information Security Officer
@ Metrolink | Los Angeles, CA
Senior Security Engineer
@ Freedom of the Press Foundation | Remote, 4 hour time zone overlap with New York City
Security Engineer
@ ChartMogul | Remote, EU
Sr. Network Security Engineer - Fortinet (North Florida)
@ DGR Systems LLC | Jacksonville, Florida, United States
Product Security Engineer
@ Tide | United Kingdom, Remote
Security Operations Engineer
@ Scale AI | San Francisco, CA