Vulnerabilities > CVE-2020-19323 - Out-of-bounds Write vulnerability in Dlink Dir-619L Firmware 2.06

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

dlink

CWE-787

NVD

Published: 2023-09-11

Updated: 2023-09-13

Summary

An issue was discovered in /bin/mini_upnpd on D-Link DIR-619L 2.06beta devices. There is a heap buffer overflow allowing remote attackers to restart router via the M-search request ST parameter. No authentication required

Vulnerable Configurations

Part	Description	Count
OS	Dlink Dlink DIR 619L Firmware 2.06	1
Hardware	Dlink Dlink DIR 619L -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/hhhhu8045759/619L_upnpd_heapoverflow
https://www.dlink.com/en/security-bulletin/