CVE-2024-9784
CVSS 3.1 Score 8.8 of 10 (high)
Details
Summary
CVE-2024-9784 is a critical vulnerability affecting the D-Link DIR-619L B1 (version 2.06), specifically in the formResetStatistic function within the /goform/formResetStatistic file, which can lead to a buffer overflow. This flaw allows for remote exploitation due to improper handling of the curTime argument, posing significant risks to an organization's confidentiality, integrity, and availability of its systems. The vulnerability has been publicly disclosed and has a high CVSS score of 8.8, indicating severe impact potential with low attack complexity and no user interaction required. To remediate this issue, organizations should update affected devices with available security patches from D-Link or take measures to limit network access to vulnerable units. Given its characteristics, exploitation could result in unauthorized access and control over the device, leading to further security breaches within organizational networks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.