CVE Details
Basic Information
| Title |
D-Link DIR-816 QoSPortSetup stack-based overflow |
| Type |
cve |
| Published |
2025-06-05T00:31:05.077Z |
| Last Seen |
|
Product Information
| Vendor |
D-Link |
| Product |
DIR-816 |
| Version |
1.10CNB05 |
CVSS Information
| Base Score |
9.3 (CRITICAL) |
| Attack Vector |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
| Confidentiality Impact |
|
| Integrity Impact |
|
| Availability Impact |
|
AI Analysis
| AI Description |
A critical stack-based buffer overflow vulnerability exists in the QoSPortSetup function of D-Link DIR-816 1.10CNB05 firmware. The vulnerability can be exploited remotely, allowing attackers to execute arbitrary code. The affected product is no longer supported by the vendor. |
| AI Severity |
Critical |
| Vendor |
D-Link |
| Product |
DIR-816 |
| Affected Version |
1.10CNB05 |
Additional Information
| CVE List |
|
| CWE List |
CWE-121, CWE-119 |
| Bulletin Family |
|
| Source Data |
D-Link DIR-816 1.10CNB05 |
Source Information
| Source Data |
D-Link DIR-816 1.10CNB05 |
| Source Link |
|
Description
A vulnerability was found in D-Link DIR-816 1.10CNB05. It has been declared as critical. This vulnerability affects the function QoSPortSetup of the file /goform/QoSPortSetup. The manipulation of the argument port0_group/port0_remarker/ssid0_group/ssid0_remarker leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
CVSS Score Summary
Base Score: 9.3 (CRITICAL)
View Full CVE Details
