CVE-2024-52759

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 19, 2024
Updated: Nov 20, 2024
CWE ID 120

Summary

CVE-2024-52759 is a recently disclosed buffer overflow vulnerability affecting the D-Link DI-8003 v16.07.26A1 firmware. The issue lies within the ip_position_asp function, which handles the ip parameter with insufficient bounds checking, allowing an attacker to send specially crafted data that overflows the buffer and potentially executes arbitrary code. This vulnerability could lead to serious consequences, including unauthorized access, data theft, or system crashes. Users are strongly advised to update their D-Link DI-8003 routers to the latest firmware version as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share