D-Link Routers Vulnerable to Path Traversal Attacks
CVE-2024-6044

6.5MEDIUM

Key Information:

Vendor

D-link
Status
G403
G415
G416
M18
Vendor
CVE Published:
17 June 2024

What is CVE-2024-6044?

Certain models of D-Link wireless routers have a path traversal vulnerability. Unauthenticated attackers on the same local area network can read arbitrary system files by manipulating the URL.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

E15 earlier < 1.20.01

E30 earlier < 1.10.02

G403 earlier < 1.10.01

References

https://www.twcert.org.tw/tw/cp-132-7877-b4674-1.html
third-party-advisory
https://www.twcert.org.tw/en/cp-139-7878-7c3d9-2.html
third-party-advisory
https://supportannouncement.us.dlink.com/security/publica...
vendor-advisory

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.