CVE-2024-13030 | D-Link DIR-823G 1.0.2B05_20181207 Web Management Interface /HNAP1/ access control

A vulnerability was found in D-Link DIR-823G 1.0.2B05_20181207. It has been rated as critical. This issue affects the function

SetAutoRebootSettings/SetClientInfo/SetDMZSettings/SetFirewallSettings/SetParentsControlInfo/SetQoSSettings/SetVirtualServerSettings

of the file /HNAP1/ of the component Web Management Interface. The manipulation leads to improper access controls. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

The identification of this vulnerability is CVE-2024-13030. The attack may be initiated remotely. Furthermore, there is an exploit available.

It is recommended to apply restrictive firewalling.

CVE-2024-13030 | D-Link DIR-823G 1.0.2B05_20181207 Web Management Interface /HNAP1/ access control

Post correlati

CVE-2024-34394 | libxmljs2 up to 0.33.0 namespaces type confusion (ID 205)

CVE-2023-50863 | Kashipara Group Travel Website 1.0 generateReceipt.php hotelIDHidden sql injection

CVE-2024-2763 | Tenda AC10U 15.03.06.48 goform/setcfm formSetCfm funcpara1 stack-based overflow

CVE-2024-56700 | Linux Kernel up to 6.12.1 wl128x fmc_send_cmd null pointer dereference