Vulnerabilities > CVE-2021-34201 - Out-of-bounds Write vulnerability in Dlink Dir-2640-Us Firmware 1.01B04

CVSS 7.1 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

dlink

CWE-787

NVD

Published: 2021-06-16

Updated: 2024-11-21

Summary

D-Link DIR-2640-US 1.01B04 is vulnerable to Buffer Overflow. There are multiple out-of-bounds vulnerabilities in some processes of D-Link AC2600(DIR-2640). Local ordinary users can overwrite the global variables in the .bss section, causing the process crashes or changes.

Vulnerable Configurations

Part	Description	Count
OS	Dlink Dlink DIR 2640 US Firmware 1.01B04	1
Hardware	Dlink Dlink DIR 2640 US -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

http://dir-2640-us.com
http://dir-2640-us.com
http://d-link.com
http://d-link.com
https://github.com/liyansong2018/CVE/tree/main/2021/CVE-2021-34201
https://github.com/liyansong2018/CVE/tree/main/2021/CVE-2021-34201
https://www.dlink.com/en/security-bulletin/
https://www.dlink.com/en/security-bulletin/