A stack overflow vulnerability exists in the sub_402280 function of the HNAP service of D-Link DCS-960L 1.09, allowing an attacker to execute arbitrary code.
References
Configurations
Configuration 1 (hide)
AND |
|
History
07 May 2025, 16:06
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/fu37kola/cve/blob/main/D-Link/DCS-960L/D-Link%20DCS-960L%201.09%20Stack%20overflow_1.md - Broken Link | |
CPE | cpe:2.3:o:dlink:dcs-960l_firmware:1.09:*:*:*:*:*:*:* cpe:2.3:h:dlink:dcs-960l:-:*:*:*:*:*:*:* |
|
First Time |
Dlink
Dlink dcs-960l Dlink dcs-960l Firmware |
15 Oct 2024, 16:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-94 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
15 Oct 2024, 12:57
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
14 Oct 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-10-14 17:15
Updated : 2025-05-07 16:06
NVD link : CVE-2024-48168
Mitre link : CVE-2024-48168
CVE.ORG link : CVE-2024-48168
JSON object : View
Products Affected
dlink
- dcs-960l
- dcs-960l_firmware
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')