CVE-2024-45694

Name of the Vulnerable Software and Affected Versions D-Link wireless routers (affected versions not specified) D-Link DIR-X4860 D-Link DIR-X5460A1 D-Link COVR-X1870

Description The web service of certain models of D-Link wireless routers contains a Stack-based Buffer Overflow vulnerability, which allows unauthenticated remote attackers to exploit this vulnerability to execute arbitrary code on the device. This flaw lets unauthenticated remote attackers execute code on the device without authorization.

Recommendations For D-Link DIR-X4860, consider disabling the web service until a patch is available. For D-Link DIR-X5460A1, restrict access to the web service to minimize the risk of exploitation. For D-Link COVR-X1870, avoid using the web service until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.