Buffer Overflow Vulnerability in D-Link DIR-619L B1
CVE-2023-43867

7.5HIGH

Key Information:

Vendor: D-Link
Status: Dir-619l Firmware
Vendor: CVE Published:; 28 September 2023

Summary

The D-Link DIR-619L B1 version 2.02 is susceptible to a buffer overflow vulnerability through the formSetWanL2TP function. This security flaw can potentially allow an attacker to manipulate memory operations, leading to unauthorized access or execution of arbitrary code. Users are urged to apply necessary patches and secure their devices to mitigate potential risks associated with this vulnerability.

References

https://www.dlink.com/en/security-bulletin/

https://github.com/YTrick/vuln/blob/main/DIR-619L%20Buffe...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 28, 2023
Vulnerability Reserved
Sep 25, 2023