CRITICAL🇵🇱 Wersja polska

CVE-2024-45695

CVSS 9.8v3.1pub. 2024-09-16upd. 2024-09-17

The web service of certain models of D-Link wireless routers contains a Stack-based Buffer Overflow vulnerability, which allows unauthenticated remote attackers to exploit this vulnerability to execute arbitrary code on the device.

🤖 AI Analysis
How it works

The vulnerability (CWE-121, CWE-787) consists of a stack-based buffer overflow in the router's web service. An attacker can send a specially crafted network request that causes data to be written beyond the boundaries of the allocated buffer in stack memory. This makes it possible to overwrite critical control structures and redirect program execution flow, which effectively leads to arbitrary code execution.

Impact

An unauthenticated remote attacker can execute arbitrary code on the vulnerable device, which in practice means complete takeover of the router, ability to modify its configuration, intercept network traffic, or use the device as an entry point to the local network.

Mitigation & patch

Security patches available from the manufacturer should be applied in accordance with references published by TWCERT (https://www.twcert.org.tw/en/cp-139-8083-a299e-2.html). It is also recommended to restrict access to the router's web interface exclusively to trusted hosts and disable remote management over the Internet until the patch is installed.

Who is affected

D-Link DIR-X4860 wireless routers — specific firmware versions indicated in manufacturer references (TWCERT)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dlink Dir X4860

    HW
    Dlink
    a1
  • Dlink Dir X4860 Firmware

    OS
    Dlink
    1.001.04
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEMemory
CWE
References

Related vulnerabilities

CVE-2024-45694CRITICAL9.8PL ✓ten sam produkt

Stack-based Buffer Overflow w routerach D-Link DIR-X5460 umożliwiający RCE

CVE-2024-45697CRITICAL9.8PL ✓ten sam produkt

D-Link DIR-X4860 — ukryta usługa telnet z zakodowanymi danymi logowania

CVE-2024-45698CRITICAL9.8PL ✓ten sam produkt

D-Link DIR-X4860: command injection przez telnet z użyciem zakodowanych poświadczeń

CVE-2024-45696HIGH8.8ten sam produkt

Certain models of D-Link wireless routers contain hidden functionality. By sending specific packets to the web...

CVE-2024-3272CRITICAL9.8⚠ KEVPL ✓ten sam vendor

D-Link DNS-320L/325/327L/340L — zakodowane na stałe poświadczenia (hard-coded credentials)