CVE-2024-57376
CVE-2024-57376 affects D-Link DSR-150, DSR-150N, DSR-250, DSR-250N, DSR-500N, and DSR-1000N with firmware versions 3.13–3.17B901C. The root cause is a buffer overflow in the CGI logout handling path triggered via extCpResult passed to captivePortalLib.duaLogoutInfoGet, using strcpy on user input,...