CVE-2024-0921

moderate-risk

Published 2024-01-26

A vulnerability has been found in D-Link DIR-816 A2 1.10CNB04 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /goform/setDeviceSettings of the component Web Interface. The manipulation of the argument statuscheckpppoeuser leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-252139.

Do I need to act?

17.4% chance of exploitation in next 30 days

EPSS score — higher than 83% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 4.7/10 Medium

NETWORK / LOW complexity

Affected Products (1)

Dir-816 A2 Firmware

Affected Vendors

Dlink

References (6)

Exploit https://github.com/xiyuanhuaigu/cve/blob/main/rce.md

Permissions Required https://vuldb.com/?ctiid.252139

Third Party Advisory https://vuldb.com/?id.252139

Exploit https://github.com/xiyuanhuaigu/cve/blob/main/rce.md

Permissions Required https://vuldb.com/?ctiid.252139

Third Party Advisory https://vuldb.com/?id.252139

/ 100

moderate-risk

Severity 19/34 · Moderate

Exploitability 13/34 · Low

Exposure 5/34 · Minimal