Buffer Overflow Vulnerability in D-Link DIR-853 A1 Router
CVE-2025-25742

9.8CRITICAL

Key Information:

Vendor: D-Link
Status: DIR-853 A1 Router
Vendor: CVE Published:; 12 February 2025

Summary

The D-Link DIR-853 A1 router has been found to contain a stack-based buffer overflow vulnerability. This issue arises through improper handling of the AccountPassword parameter in the SetSysEmailSettings module. An attacker could exploit this vulnerability to inject malicious code, potentially compromising the device's integrity and security. Users are advised to monitor their devices and apply any available security patches to mitigate the risk of exploitation through this vulnerability.

References

https://dear-sunshine-ba5.notion.site/D-Link-DIR-853-3-18...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 12, 2025
Vulnerability Reserved
Feb 7, 2025