CVE-2023-39749

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 21, 2023
Updated: Aug 24, 2023
CWE ID 120

Summary

CVE-2023-39749 is a newly disclosed buffer overflow vulnerability affecting D-Link DAP-2660 v1.13 devices. The issue is found in the /adv_resource component and can be triggered through a specially crafted GET request. Successful exploitation of this vulnerability may result in arbitrary code execution, posing a significant risk to network security. Users are urged to apply the latest software patches to mitigate this threat. Alternatively: Buffer overflow vulnerability, identified as CVE-2023-39749, has been discovered in D-Link DAP-2660 v1.13. The flaw lies in the /adv_resource component and can be triggered by a maliciously crafted GET request. Exploitation of this vulnerability may lead to arbitrary code execution and subsequent compromise of the affected device. To protect against potential attacks, it is recommended that users install the latest patches as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share