CVE-2024-13106

Name of the Vulnerable Software and Affected Versions D-Link DIR-816 A2 version 1.10CNB05 R1B011D88210

Description The issue is related to the IP QoS Handler component of the D-Link DIR-816 A2 router's firmware, which is associated with inadequate access controls. This can be exploited by a remote attacker to impact the integrity of protected information. The manipulation leads to improper access controls, and the attack may be launched remotely.

Recommendations For version 1.10CNB05 R1B011D88210, as a temporary workaround, consider restricting access to the /goform/form2IPQoSTcAdd file of the IP QoS Handler component until a patch is available. Avoid using the affected functionality of this component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.