CVE-2024-33113

MEDIUM NUCLEI

Dlink Dir-845l Firmware < 1.01krb03 - Command Injection

Title source: rule

Description

D-LINK DIR-845L <=v1.01KRb03 is vulnerable to Information disclosurey via bsc_sms_inbox.php.

Exploits (2)

nomisec WORKING POC 3 stars
by FaLLenSKiLL1 · poc
https://github.com/FaLLenSKiLL1/CVE-2024-33113
nomisec WRITEUP
by tekua · poc
https://github.com/tekua/CVE-2024-33113

Nuclei Templates (1)

D-LINK DIR-845L bsc_sms_inbox.php file - Information Disclosure
MEDIUMVERIFIEDby pussycat0x
Shodan: DIR-845L

References (1)

Scores

CVSS v3 5.3
EPSS 0.5286
EPSS Percentile 98.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Details

CWE
CWE-79 CWE-77
Status published
Products (1)
dlink/dir-845l_firmware < 1.01krb03
Published May 06, 2024
Tracked Since Feb 18, 2026