Lucene search
HistoryJan 19, 2024 - 4:15 p.m.
CVE-2024-0717
cve-2024-0717
d-link
good line
routers
vulnerability
remote exploitation
information disclosure
http
get request handler
manipulation
code
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
5.3 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
20.3%
A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815, DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR-843, DIR-853, DIR-878, DIR-882, DIR-1210, DIR-1260, DIR-2150, DIR-X1530, DIR-X1860, DSL-224, DSL-245GR, DSL-2640U, DSL-2750U, DSL-G2452GR, DVG-5402G, DVG-5402G, DVG-5402GFRU, DVG-N5402G, DVG-N5402G-IL, DWM-312W, DWM-321, DWR-921, DWR-953 and Good Line Router v2 up to 20240112. This vulnerability affects unknown code of the file /devinfo of the component HTTP GET Request Handler. The manipulation of the argument area with the input notice|net|version leads to information disclosure. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-251542 is the identifier assigned to this vulnerability.
Affected configurations
Node
d-linkdap_2253Match20240112
d-linkdir-100Match20240112
d-linkdir-615_firmwareMatch20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-620_firmwareMatch20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-816_a2_firmwareMatch20240112
d-linkdir-100Match20240112
d-linkdir-822_firmwareMatch20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-878_firmwareMatch20240112
d-linkdir-882_firmwareMatch20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdir-100Match20240112
d-linkdsl-502tMatch20240112
d-linkdsl-502tMatch20240112
d-linkdsl-2640u_firmwareMatch20240112
d-linkdsl-502tMatch20240112
d-linkdsl-502tMatch20240112
d-linkdvg-g5402spMatch20240112
d-linkdvg-g5402spMatch20240112
d-linkdvg-g5402spMatch20240112
d-linkdvg-g5402spMatch20240112
d-linkdvg-g5402spMatch20240112
d-linkmydlink\+Match20240112
d-linkmydlink\+Match20240112
d-linkdwr-116_firmwareMatch20240112
d-linkdwr-116_firmwareMatch20240112
d-linkdi-604_broadband_routerMatch20240112
| Vendor | Product | Version | CPE |
|---|---|---|---|
| d\-link | dap_2253 | 20240112 | cpe:2.3:h:d\-link:dap_2253:20240112:*:*:*:*:*:*:* |
| d\-link | dir\-100 | 20240112 | cpe:2.3:h:d\-link:dir\-100:20240112:*:*:*:*:*:*:* |
| d\-link | dir\-615_firmware | 20240112 | cpe:2.3:o:d\-link:dir\-615_firmware:20240112:*:*:*:*:*:*:* |
| d\-link | dir\-100 | 20240112 | cpe:2.3:h:d\-link:dir\-100:20240112:*:*:*:*:*:*:* |
| d\-link | dir\-100 | 20240112 | cpe:2.3:h:d\-link:dir\-100:20240112:*:*:*:*:*:*:* |
| d\-link | dir\-100 | 20240112 | cpe:2.3:h:d\-link:dir\-100:20240112:*:*:*:*:*:*:* |
| d\-link | dir\-620_firmware | 20240112 | cpe:2.3:o:d\-link:dir\-620_firmware:20240112:*:*:*:*:*:*:* |
| d\-link | dir\-100 | 20240112 | cpe:2.3:h:d\-link:dir\-100:20240112:*:*:*:*:*:*:* |
| d\-link | dir\-100 | 20240112 | cpe:2.3:h:d\-link:dir\-100:20240112:*:*:*:*:*:*:* |
| d\-link | dir\-100 | 20240112 | cpe:2.3:h:d\-link:dir\-100:20240112:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "D-Link",
"product": "DAP-1360",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-300",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-615",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-615GF",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-615S",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-615T",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-620",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-620S",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-806A",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-815",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-815AC",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-815S",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-816",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-820",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-822",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-825",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-825AC",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-825ACF",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-825ACG1",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-841",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-842",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-842S",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-843",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-853",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-878",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-882",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-1210",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-1260",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-2150",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-X1530",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DIR-X1860",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DSL-224",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DSL-245GR",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DSL-2640U",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DSL-2750U",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DSL-G2452GR",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DVG-5402G",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DVG-5402G",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DVG-5402GFRU",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DVG-N5402G",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DVG-N5402G-IL",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DWM-312W",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DWM-321",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DWR-921",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "DWR-953",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
},
{
"vendor": "D-Link",
"product": "Good Line Router v2",
"versions": [
{
"version": "20240112",
"status": "affected"
}
],
"modules": [
"HTTP GET Request Handler"
]
}
]Related
prion
prion
Information disclosure
2024-01-19 16:15:00
cvelist
cvelist
nvd
nvd
CVE-2024-0717
2024-01-19 16:15:11
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
5.3 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
20.3%
Related for CVE-2024-0717