CVE-2021-30072

2021-04-0219:55:08

mitre

www.cve.org

9.9 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.4%

JSON

An issue was discovered in prog.cgi on D-Link DIR-878 1.30B08 devices. Because strcat is misused, there is a stack-based buffer overflow that does not require authentication.

References

supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10217

www.dlink.com/en/security-bulletin/