Описание
There are multiple out-of-bounds vulnerabilities in some processes of D-Link AC2600(DIR-2640) 1.01B04. Ordinary permissions can be elevated to administrator permissions, resulting in local arbitrary code execution. An attacker can combine other vulnerabilities to further achieve the purpose of remote code execution.
Ссылки
- Vendor Advisory
- Broken LinkURL Repurposed
- ExploitThird Party Advisory
- Vendor Advisory
- Vendor Advisory
- Broken LinkURL Repurposed
- ExploitThird Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:dlink:dir-2640-us_firmware:1.01b04:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dir-2640-us:-:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00334
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-787
Связанные уязвимости
github
больше 3 лет назад
There are multiple out-of-bounds vulnerabilities in some processes of D-Link AC2600(DIR-2640) 1.01B04. Ordinary permissions can be elevated to administrator permissions, resulting in local arbitrary code execution. An attacker can combine other vulnerabilities to further achieve the purpose of remote code execution.
EPSS
Процентиль: 56%
0.00334
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-787