CVE-2024-9555
CVSS 3.1 Score 8.8 of 10 (high)
Details
Summary
CVE-2024-9555 is a critical vulnerability identified in the D-Link DIR-605L 2.13B01 BETA, specifically affecting the formSetEasy_Wizard function, which is susceptible to a buffer overflow due to improper handling of the curTime argument. This vulnerability allows remote attackers to exploit the device, posing significant risks to confidentiality, integrity, and availability with a base score of 8.8. Remediation steps include applying vendor-provided patches or updates as they become available. The vulnerability has been publicly disclosed, increasing the urgency for affected organizations to secure their devices. Failure to address this issue may lead to unauthorized access and potential compromise of sensitive data.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.