CVE-2021-41441

Name of the Vulnerable Software and Affected Versions D-Link DIR-X1860 versions prior to v1.10WWB09 Beta

Description The issue is related to a DoS attack in the web application, allowing a remote unauthenticated attacker to reboot the router by sending a specially crafted URL to an authenticated victim, who must visit the URL for the reboot to occur. This is also associated with resource release errors in the Wi-Fi router's firmware, which can be exploited by a remote attacker using a specially crafted web page to cause a denial of service.

Recommendations For D-Link DIR-X1860 versions prior to v1.10WWB09 Beta, update to version v1.10WWB09 Beta or later to resolve the issue. As a temporary workaround, consider restricting access to the web application to minimize the risk of exploitation. Avoid using the router's web interface from untrusted networks until the issue is resolved.