PT-2025-47844 · D Link · Dir-822+1
Hhsw34
·
Publicado
2025-11-12
·
Atualizado
2025-12-02
·
CVE-2025-13552
CVSS v2.0
9.0
Alta
| Vetor | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
D-Link DIR-822K versions 1.00 20250513164613 and 1.1.50
D-Link DWR-M920 versions 1.00 20250513164613 and 1.1.50
Description
A buffer overflow issue exists in D-Link DIR-822K and DWR-M920 routers. The issue is related to the manipulation of the
submit-url argument within an unknown function of the /boafrm/formWlEncrypt file. This allows for a remote attack. The exploit for this issue has been publicly released.Recommendations
For D-Link DIR-822K version 1.00 20250513164613, update to a newer version that contains a fix for this vulnerability.
For D-Link DIR-822K version 1.1.50, update to a newer version that contains a fix for this vulnerability.
For D-Link DWR-M920 version 1.00 20250513164613, update to a newer version that contains a fix for this vulnerability.
For D-Link DWR-M920 version 1.1.50, update to a newer version that contains a fix for this vulnerability.
Exploit
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Dir-822
Dwr-M920