Stack-Based Buffer Overflow in D-Link DIR-619L Router
CVE-2025-6374

8.8HIGH

Key Information:

Vendor: D-Link
Status: DIR-619L
Vendor: CVE Published:; 21 June 2025

What is CVE-2025-6374?

A stack-based buffer overflow vulnerability has been identified in the D-Link DIR-619L router, specifically in the function formSetACLFilter within the /goform/formSetACLFilter file. This issue arises from improper handling of the curTime argument, enabling potential attackers to exploit the vulnerability remotely. It's important to note that this flaw affects only those devices that are beyond official support by D-Link, increasing the risk of exploitation. Security professionals and users should be aware of this vulnerability to mitigate any potential threats.

References

https://github.com/wudipjq/my_vuln/blob/main/D-Link6/vuln...

https://vuldb.com/?ctiid.313367

https://vuldb.com/?id.313367

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 21, 2025