CVE-2024-7828

Name of the Vulnerable Software and Affected Versions D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04 (affected versions not specified)

Description The issue is related to a buffer overflow vulnerability in the cgi set cover() function of the /cgi-bin/photocenter mgr.cgi file. This vulnerability can be exploited remotely by manipulating the album name argument, allowing an attacker to execute arbitrary commands using a specially crafted POST request. The estimated number of potentially affected devices is not provided, and there is no information about real-world incidents where this issue was exploited.

Recommendations As a temporary workaround, consider disabling the cgi set cover() function until a patch is available. Restrict access to the /cgi-bin/photocenter mgr.cgi file to minimize the risk of exploitation. Avoid using the album name argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.