CVE-2024-33772

Name of the Vulnerable Software and Affected Versions: D-Link DIR-619L Rev.B version 2.06B1

Description: A buffer overflow issue in the /bin/boa via formTcpipSetup function of the D-Link DIR-619L router's firmware allows remote authenticated users to trigger a denial of service (DoS) through the curTime parameter. This vulnerability can be exploited by a remote attacker to cause a denial of service.

Recommendations: For D-Link DIR-619L Rev.B version 2.06B1, consider restricting access to the formTcpipSetup function until a patch is available. As a temporary workaround, avoid using the curTime parameter in the affected API endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.