CVE-2024-6525 | D-Link DAR-7000 up to 20230922 /log/decodmail.php file deserialization

Posted by Angelo Barbosa | Jul 5, 2024 | CVE

A vulnerability was found in D-Link DAR-7000 up to 20230922. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /log/decodmail.php. The manipulation of the argument file leads to deserialization. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is handled as CVE-2024-6525. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-6525 | D-Link DAR-7000 up to 20230922 /log/decodmail.php file deserialization

Related Posts

CVE-2024-32932 | Johnson Controls Illustra Essentials Gen 4 up to 4.01.02.10.5982 Web Interface storing passwords in a recoverable format (icsa-24-179-07)

CVE-2024-1976 | Marketing Optimizer Plugin up to 20200925 on WordPress cross-site request forgery

CVE-2024-22851 | LiveConfig up to 2.5.1 Request /static/ path traversal

CVE-2023-44989 | GSheetConnector CF7 Google Sheets Connector Plugin up to 5.0.5 on WordPress log file