CVE-2024-40505 | D-Link DAP-1650 1.03 hedwig.cgi path traversal

Posted by Angelo Barbosa | Jul 16, 2024 | CVE

A vulnerability, which was classified as critical, was found in D-Link DAP-1650 1.03. This affects an unknown part of the file hedwig.cgi. The manipulation leads to path traversal. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is uniquely identified as CVE-2024-40505. Attacking locally is a requirement. There is no exploit available.

It is recommended to replace the affected component with an alternative.

CVE-2024-40505 | D-Link DAP-1650 1.03 hedwig.cgi path traversal

Related Posts

CVE-2024-31847 | Italtel 1.6.4 GET Parameter cross site scripting

CVE-2024-1000 | Totolink N200RE 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi setTracerouteCfg command stack-based overflow

CVE-2023-31289 | Pexip Infinity up to 31.1 Signalling denial of service

CVE-2024-42167 | FIWARE Keyrock up to 8.4 saml2.js generate_app_certificates os command injection