Buffer Overflow Vulnerability in D-Link DI-8003 Router
CVE-2024-52757

4.9MEDIUM

Key Information:

Vendor: D-Link
Status: Di-8003 Firmware
Vendor: CVE Published:; 20 November 2024

What is CVE-2024-52757?

The D-Link DI-8003 router (version 16.07.16A1) has a vulnerability that allows an attacker to exploit a buffer overflow through the notify parameter in the arp_sys_asp function. This could potentially enable unauthorized access or cause a denial of service. Users are encouraged to review security bulletins and apply necessary patches to mitigate potential risks.

References

https://www.dlink.com/en/security-bulletin/

https://github.com/faqiadegege/IoTVuln/blob/main/DI_8003_...

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 20, 2024