Null Pointer Dereference in D-Link DAP Series Products
CVE-2021-28839
7.5HIGH
What is CVE-2021-28839?
A Null Pointer Dereference vulnerability has been identified in several D-Link DAP series products, specifically in the upload_certificate function of the sbin/httpd binary. When an HTTP GET request is processed, the function may mistakenly use NULL as its first argument, leading to a potential denial-of-service condition. This could be exploited by attackers to disrupt service and affect network reliability.