CVE-2024-52757

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Nov 20, 2024
Updated: Nov 22, 2024
CWE ID 787
CWE ID 120

Summary

CVE-2024-52757 is a newly disclosed vulnerability affecting D-LINK DI-8003 v16.07.16A1 routers. The issue stems from a buffer overflow vulnerability in the arp_sys_asp function, which can be exploited through the notify parameter. An attacker can send specially crafted packets to trigger the buffer overflow, potentially leading to remote code execution and unauthorized access to affected devices. Users are advised to apply the latest security updates to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share