CVE-2024-57376

HIGH EPSS 88.1%
Published Jan 28, 20251y ago · Modified Jun 17, 20261w ago
8.8 CVSS 3.1
High
Find Similar
Published Jan 28, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

Buffer Overflow vulnerability in D-Link DSR-150, DSR-150N, DSR-250, DSR-250N, DSR-500N, DSR-1000N from 3.13 to 3.17B901C allows unauthenticated users to execute remote code execution.

CVSS Details

Base Score
8.8
Exploitability
2.8
Impact
5.9
Vector string
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector Adjacent
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
88.1% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-120

Affected Products 12

VendorProductVersionRange
dlinkdsr-150_firmware*≥3.13  –  ≤3.17B901C
dlinkdsr-150*any
dlinkdsr-150n_firmware*≥3.13  –  ≤3.17B901C
dlinkdsr-150n*any
dlinkdsr-250_firmware*≥3.13  –  ≤3.17B901C
dlinkdsr-250*any
dlinkdsr-250n_firmware*≥3.13  –  ≤3.17B901C
dlinkdsr-250n*any
dlinkdsr-500_firmware*≥3.13  –  ≤3.17B901C
dlinkdsr-500*any
dlinkdsr-1000n_firmware*≥3.13  –  ≤3.17b901c
dlinkdsr-1000n*any

References 1

  • dlink.com https://www.dlink.com/en/security-bulletin/
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.