CVE-2024-37607

Name of the Vulnerable Software and Affected Versions D-Link DAP-2555 version REVA FIRMWARE 1.20

Description A buffer overflow vulnerability in the D-Link DAP-2555 allows remote attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The issue is related to the /sbin/httpd file and involves a buffer overflow operation that can be exploited by sending specially formed HTTP requests.

Recommendations For D-Link DAP-2555 version REVA FIRMWARE 1.20, consider disabling the HTTP service until a patch is available to prevent exploitation of the buffer overflow vulnerability. Restrict access to the /sbin/httpd file to minimize the risk of exploitation. Avoid using crafted HTTP requests to the affected device until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.