Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2024-0717

MEDIUM
Published 2024-01-19T15:31:04.290Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-0717. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1
5.3
/10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Base Score Metrics
Exploitability: N/A Impact: N/A

EPSS Score

v2023.03.01
0.002
probability
of exploitation in the wild

There is a 0.2% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-01-25
Exploit Probability
Percentile: 0.552
Higher than 55.2% of all CVEs

Attack Vector Metrics

Attack Vector
Not Available
Attack Complexity
Not Available
Privileges Required
Not Available
User Interaction
Not Available
Scope
Not Available

Impact Metrics

Confidentiality
Not Available
Integrity
Not Available
Availability
Not Available

Description

A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815, DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR-843, DIR-853, DIR-878, DIR-882, DIR-1210, DIR-1260, DIR-2150, DIR-X1530, DIR-X1860, DSL-224, DSL-245GR, DSL-2640U, DSL-2750U, DSL-G2452GR, DVG-5402G, DVG-5402G, DVG-5402GFRU, DVG-N5402G, DVG-N5402G-IL, DWM-312W, DWM-321, DWR-921, DWR-953 and Good Line Router v2 up to 20240112. This vulnerability affects unknown code of the file /devinfo of the component HTTP GET Request Handler. The manipulation of the argument area with the input notice|net|version leads to information disclosure. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-251542 is the identifier assigned to this vulnerability.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

D-Link

DAP-1360

Affected Versions:

20240112
D-Link

DIR-300

Affected Versions:

20240112
D-Link

DIR-615

Affected Versions:

20240112
D-Link

DIR-615GF

Affected Versions:

20240112
D-Link

DIR-615S

Affected Versions:

20240112
D-Link

DIR-615T

Affected Versions:

20240112
D-Link

DIR-620

Affected Versions:

20240112
D-Link

DIR-620S

Affected Versions:

20240112
D-Link

DIR-806A

Affected Versions:

20240112
D-Link

DIR-815

Affected Versions:

20240112
D-Link

DIR-815AC

Affected Versions:

20240112
D-Link

DIR-815S

Affected Versions:

20240112
D-Link

DIR-816

Affected Versions:

20240112
D-Link

DIR-820

Affected Versions:

20240112
D-Link

DIR-822

Affected Versions:

20240112
D-Link

DIR-825

Affected Versions:

20240112
D-Link

DIR-825AC

Affected Versions:

20240112
D-Link

DIR-825ACF

Affected Versions:

20240112
D-Link

DIR-825ACG1

Affected Versions:

20240112
D-Link

DIR-841

Affected Versions:

20240112
D-Link

DIR-842

Affected Versions:

20240112
D-Link

DIR-842S

Affected Versions:

20240112
D-Link

DIR-843

Affected Versions:

20240112
D-Link

DIR-853

Affected Versions:

20240112
D-Link

DIR-878

Affected Versions:

20240112
D-Link

DIR-882

Affected Versions:

20240112
D-Link

DIR-1210

Affected Versions:

20240112
D-Link

DIR-1260

Affected Versions:

20240112
D-Link

DIR-2150

Affected Versions:

20240112
D-Link

DIR-X1530

Affected Versions:

20240112
D-Link

DIR-X1860

Affected Versions:

20240112
D-Link

DSL-224

Affected Versions:

20240112
D-Link

DSL-245GR

Affected Versions:

20240112
D-Link

DSL-2640U

Affected Versions:

20240112
D-Link

DSL-2750U

Affected Versions:

20240112
D-Link

DSL-G2452GR

Affected Versions:

20240112
D-Link

DVG-5402G

Affected Versions:

20240112
D-Link

DVG-5402G

Affected Versions:

20240112
D-Link

DVG-5402GFRU

Affected Versions:

20240112
D-Link

DVG-N5402G

Affected Versions:

20240112
D-Link

DVG-N5402G-IL

Affected Versions:

20240112
D-Link

DWM-312W

Affected Versions:

20240112
D-Link

DWM-321

Affected Versions:

20240112
D-Link

DWR-921

Affected Versions:

20240112
D-Link

DWR-953

Affected Versions:

20240112
D-Link

Good Line Router v2

Affected Versions:

20240112

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-27wg-r456-jc87

Advisory Details

A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815, DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR-843, DIR-853, DIR-878, DIR-882, DIR-1210, DIR-1260, DIR-2150, DIR-X1530, DIR-X1860, DSL-224, DSL-245GR, DSL-2640U, DSL-2750U, DSL-G2452GR, DVG-5402G, DVG-5402G, DVG-5402GFRU, DVG-N5402G, DVG-N5402G-IL, DWM-312W, DWM-321, DWR-921, DWR-953 and Good Line Router v2 up to 20240112. This vulnerability affects unknown code of the file /devinfo of the component HTTP GET Request Handler. The manipulation of the argument area with the input notice|net|version leads to information disclosure. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-251542 is the identifier assigned to this vulnerability.

CVSS Scoring

CVSS Score

5.0

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-0717
WEB https://github.com/999zzzzz/D-Link
WEB https://vuldb.com/?ctiid.251542
WEB https://vuldb.com/?id.251542

Advisory provided by GitHub Security Advisory Database. Published: January 19, 2024, Modified: January 19, 2024

References

https://vuldb.com/?id.251542
https://vuldb.com/?ctiid.251542
https://github.com/999zzzzz/D-Link
Published: 2024-01-19T15:31:04.290Z
Last Modified: 2025-05-30T14:26:30.162Z
Copied to clipboard!