Buffer Overflow in D-Link DIR-605L Router
CVE-2025-4441

8.7HIGH

Key Information:

Vendor
D-link
Status
Dir-605l
Vendor
CVE Published:
8 May 2025

Summary

A significant vulnerability has been identified in the D-Link DIR-605L version 2.13B01, specifically within the formSetWAN_Wizard534 function. The flaw arises from improper handling of the curTime argument, potentially leading to a buffer overflow. This vulnerability allows for remote exploitation, making devices that are no longer supported by the vendor particularly susceptible. Immediate action should be taken to secure affected systems as the risk of unauthorized access remains high.

Affected Version(s)

DIR-605L 2.13B01

References

https://vuldb.com/?id.308049
vdb-entrytechnical-description
https://vuldb.com/?ctiid.308049
signaturepermissions-required
https://vuldb.com/?submit.558351
third-party-advisory

CVSS V4

Score:
8.7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

jylsec (VulDB User)
.