Lucene search

[email protected]CVE-2023-24350

HistoryFeb 10, 2023 - 3:15 p.m.

CVE-2023-24350

2023-02-1015:15:12

CWE-787

[email protected]

web.nvd.nist.gov

cve-2023-24350

d-link

n300

wi-fi router

dir-605l

stack overflow

smtp_email_subject

config

vulnerability

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.1%

JSON

D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the config.smtp_email_subject parameter at /goform/formSetEmail.

Affected configurations

NVD

Node

dlinkdir-605l_firmwareMatch2.13b01

AND

dlinkdir-605lMatch-

CPENameOperatorVersion
dlink:dir-605l_firmwaredlink dir-605l firmwareeq2.13b01

CPE	Name	Operator	Version
dlink:dir-605l_firmware	dlink dir-605l firmware	eq	2.13b01

References

github.com/1160300418/Vuls/tree/main/D-Link/DIR-605L/03

www.dlink.com/en/security-bulletin/

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.1%

JSON

Related for CVE-2023-24350

cvelist1 nvd1 prion1 cnvd1 openvas1