Buffer Overflow in D-Link DIR600L Ax Firmware
CVE-2025-60552

7.5HIGH

Key Information:

Vendor: D-Link
Status: DIR600L Ax Firmware
Vendor: CVE Published:; 24 October 2025

What is CVE-2025-60552?

The D-Link DIR600L Ax firmware is susceptible to a buffer overflow vulnerability, specifically in the 'curTime' parameter within the 'formTcpipSetup' function. This vulnerability could allow an attacker to execute arbitrary code or crash the device, posing risks to network integrity and user data. Regular updates and security patches are recommended to mitigate potential exploitation.

References

https://github.com/luckysmallbird/DLINK-DIR600LAx-Vulnera...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 24, 2025
Vulnerability Reserved
Sep 26, 2025

JSON