CVE-2024-13108 | D-Link DIR-816 A2 1.10CNB05_R1B011D88210 form2NetSniper.cgi access control

A vulnerability was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. It has been declared as critical. This vulnerability affects unknown code of the file /goform/form2NetSniper.cgi. The manipulation leads to improper access controls. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability was named CVE-2024-13108. The attack can be initiated remotely. Furthermore, there is an exploit available.

It is recommended to apply restrictive firewalling.

CVE-2024-13108 | D-Link DIR-816 A2 1.10CNB05_R1B011D88210 form2NetSniper.cgi access control

Post correlati

CVE-2024-24694 | Zoom Desktop Client prior 5.17.10 on Windows Installer Local Privilege Escalation (ZSB-24011)

CVE-2024-22098 | OpenHarmony up to 3.2.4 use after free

CVE-2024-53269 | Envoy up to 1.30.7/1.31.3/1.32.1 IP Configuration control flow (GHSA-mfqp-7mmj-rm53)

CVE-2024-31446 | MightyPirates OpenComputers up to 1.8.3 allocation of resources