CVE-2024-36832

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 17, 2024

CWE ID 476

Summary

CVE-2024-36832 is a newly identified vulnerability affecting D-Link DAP-1513 REVA devices with firmware version 1.01. This issue permits attackers to initiate a Denial of Service (DoS) attack by sending a crafted web request to the /bin/webs binary. The vulnerability results from a NULL pointer dereference in the firmware's code, causing the binary to crash and exit, effectively denying access to the device for legitimate users. This weakness can be exploited without requiring any authentication and may disrupt network connectivity.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/wMKwT-
https://www.cve.org/CVERecord?id=CVE-2024-36832
https://nvd.nist.gov/vuln/detail/CVE-2024-36832

Back to Vulnerability Database

CVE-2024-36832

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations