CVE-2024-9563 — Classic Buffer Overflow in D-link Dir-605l

CWE-120 — Classic Buffer Overflow3 documents3 sources

Severity

8.7HIGHNVD

EPSS

0.3%

top 50.77%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

D-link Dir-605l Dlink Dir-605l Firmware

Timeline

PublishedOct 7

Description

A vulnerability, which was classified as critical, has been found in D-Link DIR-605L 2.13B01 BETA. This issue affects the function formWlanSetup_Wizard of the file /goform/formWlanSetup_Wizard. The manipulation of the argument webpage leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

▶CVEListV5d-link/dir-605l2.13B01 BETA

▶NVDdlink/dir-605l_firmware2.13b01

🔴Vulnerability Details

GHSA

GHSA-9g8p-26mc-3hm7: A vulnerability, which was classified as critical, has been found in D-Link DIR-605L 2↗2024-10-07

▶

CVEList

D-Link DIR-605L formWlanSetup_Wizard buffer overflow↗2024-10-06

▶