High severity8.0NVD Advisory· Published Mar 6, 2017· Updated May 13, 2026

CVE-2017-5633

Description

Multiple cross-site request forgery (CSRF) vulnerabilities on the D-Link DI-524 Wireless Router with firmware 9.01 allow remote attackers to (1) change the admin password, (2) reboot the device, or (3) possibly have unspecified other impact via crafted requests to CGI programs.

Affected products

D-Link/Di 524 Firmware
cpe:2.3:o:d-link:di-524_firmware:9.01:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/fulldisclosure/2017/Feb/70nvdExploitProductThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/96475nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.520
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000