CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-57684

An access control issue in the component formDMZ.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to set the DMZ service of the device via a crafted POST request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.5%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Unauthorized_Vulnerability/D-Link/DIR-816/formDMZ.md
https://www.dlink.com/en/security-bulletin/

Products affected by CVE-2024-57684

Dlink » Dir-816 » Version: a2

cpe:2.3:h:dlink:dir-816:a2
Dlink » Dir-816 Firmware » Version: 1.10cnb05_r1b011d88210

cpe:2.3:o:dlink:dir-816_firmware:1.10cnb05_r1b011d88210

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-57684

Products

Pricing

Contact Us