CVE-2026-4377 - Vulnerability Details

- Use of Weak Credentials in D-Link DWR-X1820 router

Description

Dlink DWR-X1820 router uses weak default password generated from its IMEI number and does not require users to change it. An attacker who knows how passwords are generated can easily crack the default password if they have the device IMEI number.

This issue was fixed in version 1.00B16CP.

Published: 2026-05-28

Score: 6 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

D-Link Corporation

DWR-X1820

unaffected

Version	Status	Constraints
`1.00B14CP`	affected	< 1.00B16CP

No data.

Vendor Product Confidence Versions

D-link

Dwr-x1820

95%

Version	Status	Scheme	Platform
`[1.00B14CP,1.00B16CP)`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Adjacent Network

Attack Complexity High

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00141.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://cert.pl/posts/2026/05/CVE-2026-4377
https://www.dlink.com/pl/pl/products/dwr-1820-cp#support

History

Sat, 30 May 2026 23:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		D-link D-link dwr-x1820
Vendors & Products		D-link D-link dwr-x1820

Thu, 28 May 2026 12:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Thu, 28 May 2026 10:15:00 +0000

Type	Values Removed	Values Added
Description		Dlink DWR-X1820 router uses weak default password generated from its IMEI number and does not require users to change it. An attacker who knows how passwords are generated can easily crack the default password if they have the device IMEI number. This issue was fixed in version 1.00B16CP.
Title		Use of Weak Credentials in D-Link DWR-X1820 router
Weaknesses		CWE-1391
References		https://cert.pl/posts/2026/05/CVE-2026-4377 https://www.dlink.com/pl/pl/products/dwr-1820-cp#support
Metrics		cvssV4_0 `{'score': 6, 'vector': 'CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N'}`

Subscriptions

D-link Dwr-x1820

MITRE

Status: PUBLISHED

Assigner: CERT-PL

Published: 2026-05-28T09:02:44.579Z

Updated: 2026-05-28T12:02:42.626Z

Reserved: 2026-03-18T12:46:23.457Z

Link: CVE-2026-4377

Vulnrichment

Updated: 2026-05-28T12:02:30.146Z

NVD

Status : Awaiting Analysis

Published: 2026-05-28T10:16:39.940

Modified: 2026-05-28T18:00:33.730

Link: CVE-2026-4377

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-30T21:19:16Z

Weaknesses

CWE-1391

Tracking

Attack Vector Adjacent Network

Attack Complexity High

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object