Vulnerabilities > CVE-2022-27295 - Out-of-bounds Write vulnerability in Dlink Dir-619 Firmware 1.00

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

dlink

CWE-787

NVD

Published: 2022-04-10

Updated: 2022-04-19

Summary

D-Link DIR-619 Ax v1.00 was discovered to contain a stack overflow in the function formAdvanceSetup. This vulnerability allows attackers to cause a Denial of Service (DoS) via the webpage parameter.

Vulnerable Configurations

Part	Description	Count
OS	Dlink Dlink DIR 619 Firmware 1.00	1
Hardware	Dlink Dlink DIR 619 Ax	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.dlink.com/en/security-bulletin/
https://github.com/wu610777031/IoT_Hunter/blob/main/DIR-619%20Buffer%20Overflow.pdf