How severe is CVE-2024-27619?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.3 out of 10.

What type of vulnerability is CVE-2024-27619?

This is classified as CWE-120, which is a common weakness in software security.

CVE-2024-27619 - HIGH Severity | CVSS 7.3

Vulnerability Description

Dlink Dir-3040us A1 1.20b03a hotfix is vulnerable to Buffer Overflow. Any user having read/write access to ftp server can write directly to ram causing buffer overflow if file or files uploaded are greater than available ram. Ftp server allows change of directory to root which is one level up than root of usb flash directory. During upload ram is getting filled and causing system resource exhaustion (no free memory) which causes system to crash and reboot.

Related Vulnerabilities

CVE-2021-31844

HIGH

CVSS:7.3(High)

A buffer overflow vulnerability in McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.200 allows a local attacker to execute arbitrary code with elevated privileges through placing c...

CWE-1202021

CVE-2021-31845

HIGH

CVSS:7.3(High)

A buffer overflow vulnerability in McAfee Data Loss Prevention (DLP) Discover prior to 11.6.100 allows an attacker in the same network as the DLP Discover to execute arbitrary code through placing car...

CWE-1202021

CVE-2021-34423

HIGH

CVSS:7.3(High)

A buffer overflow vulnerability was discovered in Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.8.4, Zoom Client for Meetings for Blackberry (for Android and ...

CWE-1202021

CVE-2024-25724

HIGH

CVSS:7.3(High)

In RTI Connext Professional 5.3.1 through 6.1.0 before 6.1.1, a buffer overflow in XML parsing from Routing Service, Recording Service, Queuing Service, and Cloud Discovery Service allows attackers to...

CWE-1202024

CVE-2024-32664

HIGH

CVSS:7.3(High)

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.5 and 6.0.19, specially crafted traffic or datasets can cause a limit...

CWE-1202024

CVE-2024-41176

HIGH

CVSS:7.3(High)

The MPD package included in TwinCAT/BSD allows an authenticated, low-privileged local attacker to induce a Denial-of-Service (DoS) condition on the daemon and execute code in the context of user “root...

CWE-1202024