CVE-2024-37606

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Dec 17, 2024

CWE ID 120

Summary

CVE-2024-37606 is a newly identified stack overflow vulnerability affecting D-Link DCS-932L cameras with REVB firmware version 2.18.01. An attacker can exploit this flaw by sending a specially crafted HTTP request, resulting in a denial of service (DoS) condition. The vulnerability occurs due to improper input validation, allowing malicious data to cause the stack to overflow and crash the device. This issue may impact the availability of affected cameras, making it essential for users to apply the necessary software updates as soon as they become available.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/wYqBUx
https://www.cve.org/CVERecord?id=CVE-2024-37606
https://nvd.nist.gov/vuln/detail/CVE-2024-37606

Back to Vulnerability Database

CVE-2024-37606

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations