D-Link DIR-619 Ax v1.00 was discovered to contain a stack overflow in the function formSetWanNonLogin. This vulnerability allows attackers to cause a Denial of Service (DoS) via the curTime parameter.
References
Link | Resource |
---|---|
https://github.com/wu610777031/IoT_Hunter/blob/main/DIR-619%20Buffer%20Overflow.pdf | Exploit Third Party Advisory |
https://www.dlink.com/en/security-bulletin/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
19 Apr 2022, 16:17
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-787 | |
First Time |
Dlink
Dlink dir-619 Ax Firmware Dlink dir-619 Ax |
|
CVSS |
v2 : v3 : |
v2 : 7.8
v3 : 7.5 |
CPE | cpe:2.3:h:dlink:dir-619_ax:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dir-619_ax_firmware:1.00:*:*:*:*:*:*:* |
|
References | (MISC) https://www.dlink.com/en/security-bulletin/ - Vendor Advisory | |
References | (MISC) https://github.com/wu610777031/IoT_Hunter/blob/main/DIR-619%20Buffer%20Overflow.pdf - Exploit, Third Party Advisory |
10 Apr 2022, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-04-10 21:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-27286
Mitre link : CVE-2022-27286
CVE.ORG link : CVE-2022-27286
JSON object : View
Products Affected
dlink
- dir-619_ax
- dir-619_ax_firmware
CWE
CWE-787
Out-of-bounds Write