CVE-2021-37388

CWE-120Classic Buffer Overflow3 documents3 sources
Severity
9.8CRITICAL
EPSS
3.4%
top 12.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Dlink Dir-615 Firmware
Timeline
PublishedAug 6
Latest updateMay 24

Description

A buffer overflow in D-Link DIR-615 C2 3.03WW. The ping_ipaddr parameter in ping_response.cgi POST request allows an attacker to crash the webserver and might even gain remote code execution.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-fr6j-6vp8-mw6x: A buffer overflow in D-Link DIR-615 C2 32022-05-24
CVEList
CVE-2021-37388: A buffer overflow in D-Link DIR-615 C2 32021-08-06
CVE-2021-37388 (CRITICAL CVSS 9.8) | A buffer overflow in D-Link DIR-615 | cvebase.io