CVE-2021-41442

Name of the Vulnerable Software and Affected Versions D-Link DIR-X1860 versions prior to v1.10WWB09 Beta

Description The issue is related to a web application vulnerability in the D-Link DIR-X1860 Wi-Fi router's firmware, specifically concerning inadequate handling of HTTP requests. This can be exploited by a remote attacker to send a hidden HTTP request, also known as an HTTP Request Smuggling attack, using specially crafted HTTP packets. The attack allows a remote unauthenticated attacker to perform a Denial of Service (DoS) on the web application by sending a specific HTTP packet.

Recommendations For versions prior to v1.10WWB09 Beta, update to v1.10WWB09 Beta or later to resolve the issue. As a temporary workaround, consider restricting access to the web application to minimize the risk of exploitation. Avoid using the vulnerable web application until the issue is resolved.