NewsSecurity Vulnerabilities

D-Link DIR-823G auto reboot vulnerability (CVE-2024-13030)

A vulnerability was found in D-Link DIR-823G 1.0.2B05_20181207. It has been rated as critical and the CVE is CVE-2024-13030

This issue affects the function

SetAutoRebootSettings/SetClientInfo/SetDMZSettings/SetFirewallSettings/SetParentsControlInfo/SetQoSSettings/SetVirtualServerSettings

of the file /HNAP1/ of the component Web Management Interface.

The manipulation leads to improper access controls. The attacker can set the auto reboot settings of the device.

The attack may be initiated remotely.

The exploit has been disclosed to the public and may be used.

Jason Davies

I am one of the editors here at www.systemtek.co.uk I am a UK based technology professional, with an interest in computer security and telecoms.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.