CVE-2024-13104 | D-Link DIR-816 A2 1.10CNB05_R1B011D88210 WiFi Settings form2AdvanceSetup.cgi access control

A vulnerability, which was classified as critical, was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. Affected is an unknown function of the file /goform/form2AdvanceSetup.cgi of the component WiFi Settings Handler. The manipulation leads to improper access controls. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is traded as CVE-2024-13104. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

It is recommended to apply restrictive firewalling.

CVE-2024-13104 | D-Link DIR-816 A2 1.10CNB05_R1B011D88210 WiFi Settings form2AdvanceSetup.cgi access control

Related Posts

CVE-2024-25175 | Kickdler prior 1.107.0 HTTP Response cross site scripting

CVE-2024-0493 | Kashipara Billing Software 1.0 HTTP POST Request submit_delivery_list.php customer_details sql injection

CVE-2024-12414 | Themify Store Locator Plugin up to 1.1.9 on WordPress cross-site request forgery

CVE-2024-25442 | Hugin 2022.0.0 Image loadPTScript heap-based overflow