CVE-2024-9555Classic Buffer Overflow in D-link Dir-605l

CWE-120Classic Buffer Overflow3 documents3 sources
Severity
8.7HIGHNVD
EPSS
0.1%
top 70.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
D-link Dir-605lDlink Dir-605l Firmware
Timeline
PublishedOct 6

Description

A vulnerability, which was classified as critical, has been found in D-Link DIR-605L 2.13B01 BETA. Affected by this issue is the function formSetEasy_Wizard of the file /goform/formSetEasy_Wizard. The manipulation of the argument curTime leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5d-link/dir-605l2.13B01 BETA

🔴Vulnerability Details

2
GHSA
GHSA-qr57-jg6v-7jv2: A vulnerability, which was classified as critical, has been found in D-Link DIR-605L 22024-10-06
CVEList
D-Link DIR-605L formSetEasy_Wizard buffer overflow2024-10-06
CVE-2024-9555 — Classic Buffer Overflow in D-link | cvebase