CVE-2024-36831

Published Dec 17, 2024

Last updated 2 months ago

CVSS medium 5.3

Overview

Description
A NULL pointer dereference in the plugins_call_handle_uri_clean function of D-Link DAP-1520 REVA_FIRMWARE_1.10B04_BETA02_HOTFIX allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request without authentication.
Source
cve@mitre.org
NVD status
Received

Risk scores

CVSS 3.1

Type
Secondary
Base score
5.3
Impact score
1.4
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Severity
MEDIUM

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-476

Social media

Hype score
Not currently trending

  1. CVE-2024-36831 Unauthenticated Denial of Service in D-Link DAP-1520 Firmware In D-Link DAP-1520 REVA_FIRMWARE_1.10B04_BETA02_HOTFIX, there is a NULL pointer dereference issue in the plugins_call_handle_uri_clean ... https://t.co/RrEYQX9V2M

    @VulmonFeeds

    17 Dec 2024

    31 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References