D-Link DIR-823G auto reboot vulnerability (CVE-2024-13030)
A vulnerability was found in D-Link DIR-823G 1.0.2B05_20181207. It has been rated as critical and the CVE is CVE-2024-13030
This issue affects the function
SetAutoRebootSettings/SetClientInfo/SetDMZSettings/SetFirewallSettings/SetParentsControlInfo/SetQoSSettings/SetVirtualServerSettings
of the file /HNAP1/ of the component Web Management Interface.
The manipulation leads to improper access controls. The attacker can set the auto reboot settings of the device.
The attack may be initiated remotely.
The exploit has been disclosed to the public and may be used.
I am one of the editors here at www.systemtek.co.uk I am a UK based technology professional, with an interest in computer security and telecoms.