一、漏洞簡述
CISA 於 8/4 至 8/10 在 Known Exploited Vulnerabilities Catalog (KEV) 中發布 3 個已遭駭客利用之漏洞,請所有使用相關產品或負責維運的同仁務必注意。
CVE-2020-25078
CVE-2020-25079
CVE-2022-40799
二、影響平台
D-Link|DCS-2530L and DCS-2670L Devices
D-Link|DNR-322L
三、建議處置
修補說明請參考以下官方連結:
D-Link|DCS-2530L and DCS-2670L Devices
https://support.dlink.com/productinfo.aspx?m=DCS-2530L
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10180
D-Link|DNR-322L
https://www.dlink.com/uk/en/products/dnr-322l-cloud-network-video-recorder