CRITICAL🇵🇱 Wersja polska

CVE-2024-57684

CVSS 9.8v3.1pub. 2025-01-16upd. 2025-05-02

An access control issue in the component formDMZ.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to set the DMZ service of the device via a crafted POST request.

🤖 AI Analysis
How it works

The formDMZ.cgi component in D-Link DIR-816 firmware (version 816A2_FWv1.10CNB05_R1B011D88210) does not require authentication before processing POST requests. An attacker can send a specially crafted POST request to this endpoint, which results in changing the DMZ service configuration on the device. This is an access control flaw (CWE-276 — improper default permissions), consisting of the lack of a mechanism to verify user identity before performing administrative operations.

Impact

An attacker without any privileges can remotely modify the router's DMZ zone configuration, which may lead to network traffic redirection, violation of network segmentation, and enabling access to internal organizational resources from the outside.

Mitigation & patch

Apply patches available from the manufacturer according to the references (https://www.dlink.com/en/security-bulletin/). Until the update is implemented, it is recommended to restrict access to the device's administrative interface only from trusted IP addresses and block access to the management panel from the WAN side.

Who is affected

D-Link DIR-816 with firmware version 816A2_FWv1.10CNB05_R1B011D88210

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dlink Dir 816

    HW
    Dlink
    a2
  • Dlink Dir 816 Firmware

    OS
    Dlink
    1.10cnb05_r1b011d88210
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2025-45931CRITICAL9.8PL ✓ten sam produkt

RCE w D-Link DIR-816-A2 przez podatną funkcję system() w goahead

CVE-2025-5624CRITICAL9.3PL ✓ten sam produkt

Stack-based buffer overflow w D-Link DIR-816 — funkcja QoSPortSetup

CVE-2025-5623CRITICAL9.3PL ✓ten sam produkt

Stack-based buffer overflow w D-Link DIR-816 – funkcja qosClassifier

CVE-2025-5622CRITICAL9.3PL ✓ten sam produkt

Stack-based buffer overflow w D-Link DIR-816 — zdalny atak bez uwierzytelnienia

CVE-2025-5630CRITICAL9.3PL ✓ten sam produkt

D-Link DIR-816: Stack-based buffer overflow w /goform/form2lansetup.cgi