CVE-2024-52754

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Nov 20, 2024
Updated: Nov 22, 2024
CWE ID 787
CWE ID 120

Summary

CVE-2024-52754 is a newly identified buffer overflow vulnerability affecting D-Link DI-8003 routers running version 16.07.16A1. The issue resides within the tgfile_htm function, specifically in the handling of the fn parameter. An attacker can exploit this vulnerability by supplying maliciously crafted input to trigger a buffer overflow, potentially leading to arbitrary code execution. Successful exploitation could result in unauthorized access, data theft, or other malicious activities. Users are advised to apply the latest available firmware patch to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share