Buffer Overflow Vulnerability in D-Link DIR-619L Router
CVE-2024-9782

8.8HIGH

Key Information:

Vendor: D-link
Status: Dir-619l B1
Vendor: CVE Published:; 10 October 2024

Badges

👾 Exploit Exists

What is CVE-2024-9782?

A serious buffer overflow vulnerability has been identified in the D-Link DIR-619L B1 router, specifically in the function formEasySetupWWConfig associated with the firmware version 2.06. This flaw allows for remote exploitation by manipulating the curTime argument, which can lead to unauthorized access and potential compromise of the device. Given that the exploit has already been made public, it is crucial for users and organizations utilizing the affected product to take immediate action to mitigate risks by applying relevant patches or implementing network security measures.

Affected Version(s)

DIR-619L B1 2.06

References

https://vuldb.com/?id.279934

vdb-entrytechnical-description

https://vuldb.com/?ctiid.279934

signaturepermissions-required

https://vuldb.com/?submit.414549

third-party-advisory

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Oct 10, 2024
Vulnerability published
Oct 10, 2024
Vulnerability Reserved
Oct 10, 2024

Credit

wxhwxhwxh_tutu (VulDB User)

D-link

Badges

What is CVE-2024-9782?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit