CVE-2024-9532

Summary

CVE-2024-9532 is a critical vulnerability affecting the D-Link DIR-605L 2.13B01 BETA, which allows for remote exploitation via a buffer overflow in the formAdvanceSetup function of the /goform/formAdvanceSetup file. The manipulation of the argument webpage can lead to significant impacts on confidentiality, integrity, and availability, with a CVSS base score of 8.8 indicating high severity. Organizations using this product are at risk of unauthorized access and data compromise due to this exploit being publicly disclosed. To mitigate this vulnerability, it is recommended that users update their firmware or disable remote access features if updates are not available. Failure to address this issue could result in severe consequences for affected systems and data security.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.