Description
D-Link Go-RT-AC750 GORTAC750_A1_FW_v101b03 contains a stack-based buffer overflow via the function hnap_main. An attacker can send a POST request to trigger the vulnerablilify.
References (3)
Core 3
Core References
Permissions Required
https://drive.google.com/file/d/18RhbBnaD_kH16Y6C-7TpSSPUmYKKyU_k/view
Third Party Advisory
https://gist.github.com/sunwithmoon/428c3871482a600382fec0a1994a518b
Scores
CVSS v3
9.8
EPSS
0.0049
EPSS Percentile
65.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
total
Details
CWE
CWE-121
Status
published
Products (1)
dlink/go-rt-ac750_firmware
101b03
Published
Apr 11, 2024
Tracked Since
Feb 18, 2026