CVE-2024-9912

Summary

CVE-2024-9912 is a critical vulnerability affecting the D-Link DIR-619L B1 router version 2.06, specifically within the function formSetQoS, where manipulation of the curTime argument can lead to a buffer overflow. This vulnerability allows for remote exploitation with low complexity and minimal privileges required, posing significant risks to an organization’s integrity and confidentiality. It has been publicly disclosed, increasing the urgency for remediation measures. Organizations are advised to apply updates or patches from D-Link to mitigate the risks associated with this vulnerability. The potential impact includes high integrity, confidentiality, and availability compromise, making it imperative for affected users to act swiftly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.