Back

CVE-2024-42812

Aug. 19, 2024, 8:15 p.m.

Received
CVE has been recently published to the CVE List and has been received by the NVD.

Products

D-Link DIR-860L

  • v2.03

Source

cve@mitre.org

Tags

cve@mitre.org
2024-08-19
CVE-2024-42812

CVE-2024-42812 details

Published : Aug. 19, 2024, 8:15 p.m.
Last Modified : Aug. 19, 2024, 8:15 p.m.

Description

In D-Link DIR-860L v2.03, there is a buffer overflow vulnerability due to the lack of length verification for the SID field in gena.cgi. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://gist.github.com/XiaoCurry/574ed9c2b0d12cd0b45399116d82121c cve@mitre.org
https://www.dlink.com/en/security-bulletin/ cve@mitre.org
This website uses the NVD API, but is not approved or certified by it.