D-Link DAP-1513 Firmware Vulnerability Leading to Service Disruption

CVE-2024-36832

Currently unrated 🤨

Key Information

Vendor: D-Link
Vendor: CVE Published:; 17 December 2024

Summary

CVE-2024-36832 identifies a severe vulnerability within the firmware of the D-Link DAP-1513 access point. Specifically, a NULL pointer dereference in the /bin/webs binary allows unauthenticated attackers to exploit the device by sending a crafted HTTP request. Upon receipt of such a request, the device's web service crashes and subsequently leads to a denial of service (DoS) condition, impacting the availability of the device and potentially the network it supports. This vulnerability highlights the critical need for timely firmware updates and robust network security measures to mitigate potential risks.

Refferences

https://www.dlink.com/en/security-bulletin/

https://www.dlink.com/en

https://docs.google.com/document/d/1qTpwAg7B5E4mqkBzijjuo...

https://supportannouncement.us.dlink.com/security/publica...

Timeline

Vulnerability published
Dec 17, 2024
Vulnerability Reserved
May 30, 2024

Collectors

NVD DatabaseMitre Database