ГлавнаяУязвимости → CVE-2024-9569
8.8высокая

CVE-2024-9569

→ есть в БДУ: BDU:2024-08452 (на русском)
Описание (на английском; русское — в БДУ выше)

A vulnerability has been found in D-Link DIR-619L B1 2.06 and classified as critical. Affected by this vulnerability is the function formEasySetPassword of the file /goform/formEasySetPassword. The manipulation of the argument curTime leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Затрагиваемое ПО
Dlink Dir-619l firmwareDlink Dir-619l
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/abcdefg-png/IoT-vulnerable/blob/main/D-Link/DIR-619L/formEasySetPassword.mdhttps://vuldb.com/?ctiid.279463https://vuldb.com/?id.279463https://vuldb.com/?submit.414547https://www.dlink.com/