CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-57678

An access control issue in the component form2WlAc.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to set the 2.4G and 5G mac access control list of the device via a crafted POST request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 19.8%

CVSS Severity

CVSS v3 Score 6.5

References

https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Unauthorized_Vulnerability/D-Link/DIR-816/form2WlAc.md
https://www.dlink.com/en/security-bulletin/

Products affected by CVE-2024-57678

Dlink » Dir-816 » Version: a2

cpe:2.3:h:dlink:dir-816:a2
Dlink » Dir-816 Firmware » Version: 1.10cnb05_r1b011d88210

cpe:2.3:o:dlink:dir-816_firmware:1.10cnb05_r1b011d88210

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-57678

Products

Pricing

Contact Us