CVE-2024-36831

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Dec 17, 2024

CWE ID 476

Summary

CVE-2024-36831 is a newly discovered vulnerability affecting the D-Link DAP-1520 wireless access point. The issue lies within the plugins_call_handle_uri_clean function, where a NULL pointer dereference can occur. An attacker can exploit this flaw by sending a specially crafted HTTP request, leading to a Denial of Service (DoS) condition without requiring authentication. This vulnerability poses a potential risk, as unauthorized individuals can cause service disruptions, affecting network connectivity and productivity.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/wMLh8Z
https://www.cve.org/CVERecord?id=CVE-2024-36831
https://nvd.nist.gov/vuln/detail/CVE-2024-36831

Back to Vulnerability Database

CVE-2024-36831

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations