Buffer Overflow Vulnerability in D-LINK DI-8003 Router
CVE-2024-52759

9.8CRITICAL

Key Information:

Vendor: D-Link
Status: Di-8003 Firmware
Vendor: CVE Published:; 19 November 2024

Summary

The D-LINK DI-8003 router is affected by a buffer overflow vulnerability originating from improper handling of the 'ip' parameter in the ip_position_asp function. This vulnerability allows attackers to potentially execute arbitrary code, leading to unauthorized access or manipulation of the device. Users are advised to evaluate their device firmware and apply the necessary security patches as recommended by the vendor to mitigate risks associated with this vulnerability.

References

https://www.dlink.com/en/security-bulletin/

https://github.com/faqiadegege/IoTVuln/blob/main/DI_8003_...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 19, 2024

Collectors

NVD Database