

An Emerging Ducktail Infostealer – Active IOCs
June 11, 2024
CrySIS aka Dharma Ransomware – Active IOCs
June 11, 2024
An Emerging Ducktail Infostealer – Active IOCs
June 11, 2024
CrySIS aka Dharma Ransomware – Active IOCs
June 11, 2024Severity
High
Analysis Summary
CVE-2024-33772 CVSS:7.5
D-Link DIR-619L is vulnerable to a denial of service, caused by a buffer overflow vulnerability in /bin/boa using formTcpipSetup. By sending a specially crafted request, a remote authenticated attacker could exploit this vulnerability using the curTime parameter to cause a denial of service.
CVE-2024-33771 CVSS:7.5
D-Link DIR-619L is vulnerable to a denial of service, caused by a buffer overflow vulnerability in /bin/boa using goform/formWPS. By sending a specially crafted request, a remote authenticated attacker could exploit this vulnerability using the webpage parameter to cause a denial of service.
Impact
- Denial of Service
Indicators of Compromise
CVE
- CVE-2024-33772
- CVE-2024-33771
Affected Vendors
Affected Products
- D-Link DIR-619L Rev.B 2.06B1
Remediation
Refer to D-Link Website for patch, upgrade, or suggested workaround information.