CVE-2024-36832

Published: Dec 17, 2024

Modified: Dec 17, 2024

PUBLISHED

Description

A NULL pointer dereference in D-Link DAP-1513 REVA_FIRMWARE_1.01 allows attackers to cause a Denial of Service (DoS) via a crafted web request without authentication. The vulnerability occurs in the /bin/webs binary of the firmware. When /bin/webs receives a carefully constructed HTTP request, it will crash and exit due to a null pointer reference, leading to a denial of service attack to the device.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.dlink.com/en/security-bulletin/

https://www.dlink.com/en

https://docs.google.com/document/d/1qTpwAg7B5E4mqkBzijjuoOWWnf3OE1HXIKBv7OcS8Mc/edit?usp=sharing

https://supportannouncement.us.dlink.com/security/publication.aspx?name=SAP10396

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-36832

Description

Affected Products

References