Rewterz

Lumma Stealer Malware aka LummaC – Active IOCs

October 14, 2024
Rewterz

Multiple D-Link DIR-619L B1 Vulnerabilities

October 14, 2024

Multiple D-Link Products Vulnerabilities

Severity

High

Analysis Summary

CVE-2024-9568 CVSS:8.8

A vulnerability, which was classified as critical, was found in D-Link DIR-619L B1 2.06. Affected is the function formAdvNetwork of the file /goform/formAdvNetwork. The manipulation of the argument curTime leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

CVE-2024-9564 CVSS:8.8

A vulnerability, which was classified as critical, was found in D-Link DIR-605L 2.13B01 BETA. Affected is the function formWlanWizardSetup of the file /goform/formWlanWizardSetup. The manipulation of the argument webpage leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Impact

  • Buffer Overflow

Indicators of Compromise

CVE

  • CVE-2024-9568
  • CVE-2024-9564

Affected Vendors

D-Link

Affected Products

  • D-Link DIR-619L B1 - 2.06
  • D-Link DIR-605L - 2.13B01 BETA

Remediation

Refer to D-Link Website for patch, upgrade, or suggested workaround information.

D-Link Website

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.