The vulnerability of D-Link DIR-816 A2 wireless routers’ microprogramming software lies in the fact that the operation is performed outside the buffer in memory. This allows attackers to enhance their privileges and execute arbitrary commands.

🗓️ 28 Feb 2024 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 3 Views

Buffer overflow in D-Link DIR-816 A2 router firmware allows remote privilege escalation and arbitrary command execution.

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2023-24331	21 Feb 202421:15	–	attackerkb
Circl	CVE-2023-24331	21 Feb 202422:21	–	circl
CNNVD	D-Link DIR-816 Security Vulnerability	21 Feb 202400:00	–	cnnvd
CVE	CVE-2023-24331	21 Feb 202400:00	–	cve
Cvelist	CVE-2023-24331	21 Feb 202400:00	–	cvelist
NVD	CVE-2023-24331	21 Feb 202421:15	–	nvd
OpenVAS	D-Link DIR-816 Devices Multiple Vulnerabilities (2023 - 2025)	31 Jan 202500:00	–	openvas
Prion	Command injection	21 Feb 202421:15	–	prion
RedhatCVE	CVE-2023-24331	23 May 202501:54	–	redhatcve
Vulnrichment	CVE-2023-24331	21 Feb 202400:00	–	vulnrichment

Vulners

Node

d-link dir-816_a2Match1.10cnb04

Source	Link
vuldb	www.vuldb.com/ru/
github	www.github.com/caoyebo/CVE/tree/main/Dlink%20816%20-%20CVE-2023-24331
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2024022728
web	www.web.nvd.nist.gov/view/vuln/detail

28 Feb 2024 00:00Current

8.3High risk

Vulners AI Score8.3

CVSS 39.8

CVSS 210

EPSS0.02122

router vulnerability buffer overflow remote code execution privilege escalation urladd parameter dlink router dir 816 a2