Buffer Overflow Vulnerability in D-Link DIR-816A2 Router Firmware
CVE-2025-60679

8.8HIGH

Key Information:

Vendor: D-Link
Status: DIR-816A2 Router
Vendor: CVE Published:; 13 November 2025

What is CVE-2025-60679?

A stack buffer overflow vulnerability exists in the D-Link DIR-816A2 router's firmware, specifically within the upload.cgi module. This issue arises when the /proc/version file is read into a fixed 512-byte buffer, which is then improperly handled with the sprintf() function, concatenating it into another buffer of the same size. If an attacker can manipulate the contents of /proc/version to exceed the 481-byte threshold, this results in a stack buffer overflow. Exploiting this vulnerability could allow an attacker to execute arbitrary code on the router, posing a significant threat to network security.

References

http://d-link.com

https://www.dlink.com/en/security-bulletin/

https://www.dlink.com/en

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 13, 2025
Vulnerability Reserved
Sep 26, 2025

JSON