First published: Fri Mar 22 2024(Updated: )
A command injection vulnerability exists in the cgibin binary in DIR-845L router firmware <= v1.01KRb03.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
D-Link DIR-845 | <1.01KRb03 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-29366 is classified as a high severity command injection vulnerability.
To mitigate CVE-2024-29366, upgrade the firmware of the D-Link DIR-845L router to a version newer than v1.01KRb03.
CVE-2024-29366 affects the cgibin binary in the D-Link DIR-845L router firmware version v1.01KRb03 and earlier.
Yes, CVE-2024-29366 can be exploited remotely under certain conditions.
The risks associated with CVE-2024-29366 include unauthorized command execution on the affected D-Link DIR-845L router.