CVE-2024-45694 CRITICAL

CVE-2024-45694: D-Link WiFi router - Stack-based Buffer Overflow

Vendor D-Link
Product DIR-X5460 A1
Weakness CWE-121
Published September 16, 2024
Last update September 16, 2024

CVSS base score

9.8/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

The web service of certain models of D-Link wireless routers contains a Stack-based Buffer Overflow vulnerability, which allows unauthenticated remote attackers to exploit this vulnerability to execute arbitrary code on the device.

Key dates

02Disclosure timeline

September 16, 2024 CVE published
September 16, 2024 Record updated