CVE-2024-9784

HIGH

D-Link DIR-619L B1 2.06 - Buffer Overflow via formResetStatistic curTime Parameter

Title source: llm
STIX 2.1

Description

A vulnerability classified as critical has been found in D-Link DIR-619L B1 2.06. Affected is the function formResetStatistic of the file /goform/formResetStatistic. The manipulation of the argument curTime leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

References (5)

Core 5
Core References
Permissions Required vdb-entry technical-description
https://vuldb.com/?id.279936
Permissions Required signature permissions-required
https://vuldb.com/?ctiid.279936
Third Party Advisory third-party-advisory
https://vuldb.com/?submit.414552
Product product
https://www.dlink.com/

Scores

CVSS v3 8.8
EPSS 0.0095
EPSS Percentile 57.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-120
Status published
Products (1)
dlink/dir-619l_firmware 2.06
Published Oct 10, 2024
Tracked Since Feb 18, 2026