D-Link DIR-513 formSetWanDhcpplus buffer overflow

July 21, 2025 invoker category_cve

CVE Details

Basic Information

Title	D-Link DIR-513 formSetWanDhcpplus buffer overflow
Type	cve
Published	2025-07-21T23:32:06.071Z
Modified	2025-07-21T23:32:06.071Z

Product Information

Vendor	D-Link
Product	DIR-513
Version	20190831

CVSS Information

Base Score	8.7 (HIGH)
Attack Vector	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X

Affected Products

D-Link DIR-513 20190831

Additional Information

CWE List	CWE-120, CWE-119
Source	VulDB

Description

A vulnerability was found in D-Link DIR-513 up to 20190831. It has been declared as critical. This vulnerability affects the function formSetWanDhcpplus of the file /goform/formSetWanDhcpplus. The manipulation of the argument curTime leads to buffer overflow. The attack can be initiated remotely. This vulnerability only affects products that are no longer supported by the maintainer.

References

https://vuldb.com/?id.317086
https://vuldb.com/?ctiid.317086
https://vuldb.com/?submit.619200
https://github.com/LYN1ng/D-linkdir513/blob/main/Dlink_DIR-513_Buffer_Overflow_Vulnerability.md
https://www.dlink.com/

View Full CVE Details