CVE-2024-39962 | D-Link DIR-823X AX3000 21_D240126 HTTP Request /goform/set_ntp ntp_zone_val Privilege Escalation

Posted by Angelo Barbosa | Jul 19, 2024 | CVE

A vulnerability was found in D-Link DIR-823X AX3000 21_D240126. It has been classified as critical. Affected is an unknown function of the file /goform/set_ntp of the component HTTP Request Handler. The manipulation of the argument ntp_zone_val leads to Privilege Escalation.

This vulnerability is traded as CVE-2024-39962. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-39962 | D-Link DIR-823X AX3000 21_D240126 HTTP Request /goform/set_ntp ntp_zone_val Privilege Escalation

Related Posts

CVE-2024-8471 | PHPGurukul Job Portal 1.0 /jobportal/process.php JOBID/USERNAME cross site scripting

CVE-2024-3767 | PHPGurukul News Portal 4.1 /admin/edit-post.php posttitle sql injection

CVE-2024-8963 | Ivanti CSA up to 4.6 Patch 518 path traversal

CVE-2023-43701 | Apache Superset up to 2.1.1 REST API Endpoint cross site scripting