CVE-2024-9534: D-Link DIR-605L formEasySetPassword buffer overflow
First published: Sat Oct 05 2024(Updated: )
A vulnerability was found in D-Link DIR-605L 2.13B01 BETA. It has been classified as critical. Affected is the function formEasySetPassword of the file /goform/formEasySetPassword. The manipulation of the argument curTime leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| D-Link DIR-605L Firmware | =2.13b01 | |
| D-Link DIR-605L |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-9534?
CVE-2024-9534 has been classified as critical.
What systems are affected by CVE-2024-9534?
CVE-2024-9534 affects D-Link DIR-605L with firmware version 2.13B01.
How does CVE-2024-9534 exploit the system?
CVE-2024-9534 is exploited through a buffer overflow in the function formEasySetPassword.
How do I fix CVE-2024-9534?
To fix CVE-2024-9534, update the firmware of the D-Link DIR-605L to a patched version.
What could be the potential impact of CVE-2024-9534?
The potential impact of CVE-2024-9534 includes unauthorized access and possible system compromise due to the buffer overflow.
- agent/weakness
- agent/title
- agent/references
- agent/first-publish-date
- agent/description
- agent/type
- agent/severity
- agent/author
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- agent/event
- agent/trending
- agent/epss
- collector/epss-latest
- source/FIRST
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/dlink
- canonical/d-link dir-605l firmware
- version/d-link dir-605l firmware/2.13b01
- canonical/d-link dir-605l