Vulnerabilities > CVE-2023-24799 - Out-of-bounds Write vulnerability in Dlink Dir-878 Firmware 1.20B05

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

dlink

CWE-787

critical

NVD

Published: 2023-04-07

Updated: 2023-04-13

Summary

D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_48AF78 function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.

Vulnerable Configurations

Part	Description	Count
OS	Dlink Dlink DIR 878 Firmware 1.20B05	1
Hardware	Dlink Dlink DIR 878 -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.dlink.com/en/security-bulletin/
https://github.com/DrizzlingSun/D-link/blob/main/Dir878/1/1.md