Lucene search

K
vulnrichmentMitreVULNRICHMENT:CVE-2024-45623
HistorySep 02, 2024 - 12:00 a.m.

CVE-2024-45623

2024-09-0200:00:00
mitre
github.com
1
d-link
dap-2310
firmware
buffer overflow
vulnerability
remote attackers
execute arbitrary code
atp binary
php http
get requests
apache http server
unsupported products.

AI Score

8.4

Confidence

Low

SSVC

Exploitation

none

Automatable

yes

Technical Impact

total

D-Link DAP-2310 Hardware A Firmware 1.16RC028 allows remote attackers to execute arbitrary code via a stack-based buffer overflow in the ATP binary that handles PHP HTTP GET requests for the Apache HTTP Server (httpd). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:o:d-link:dap-2310_firmware:*:*:*:*:*:*:*:*"
    ],
    "vendor": "d-link",
    "product": "dap-2310_firmware",
    "versions": [
      {
        "status": "affected",
        "version": "1.16RC028"
      }
    ],
    "defaultStatus": "unknown"
  }
]

AI Score

8.4

Confidence

Low

SSVC

Exploitation

none

Automatable

yes

Technical Impact

total

Related for VULNRICHMENT:CVE-2024-45623