CVE-2021-29295

Name of the Vulnerable Software and Affected Versions: D-Link DSP-W215 version 1.10

Description: A Null Pointer Dereference issue exists, which could allow a remote malicious user to cause a denial of service via usr/bin/lighttpd. This can be triggered by sending an HTTP request without a URL in the start line directly to the device.

Recommendations: For D-Link DSP-W215 version 1.10, consider restricting access to the device to minimize the risk of exploitation, as this issue will not be patched due to the device being End of Life. At the moment, there is no information about a newer version that contains a fix for this vulnerability.