CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-57677

An access control issue in the component form2Wan.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to set the wan service of the device via a crafted POST request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.5%

CVSS Severity

CVSS v3 Score 6.5

References

https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Unauthorized_Vulnerability/D-Link/DIR-816/form2Wan.md
https://www.dlink.com/en/security-bulletin/

Products affected by CVE-2024-57677

Dlink » Dir-816 » Version: a2

cpe:2.3:h:dlink:dir-816:a2
Dlink » Dir-816 Firmware » Version: 1.10cnb05_r1b011d88210

cpe:2.3:o:dlink:dir-816_firmware:1.10cnb05_r1b011d88210

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-57677

Products

Pricing

Contact Us