CVE-2026-5983

Name of the Vulnerable Software and Affected Versions D-Link DIR-605L version 2.13B01

Description A buffer overflow issue exists in the POST Request Handler component of D-Link DIR-605L version 2.13B01. The issue is located in the formSetDDNS function within the /goform/formSetDDNS file. Manipulation of the curTime argument can trigger a buffer overflow, allowing for remote exploitation. The exploit has been publicly disclosed.

Recommendations Update to a newer version if available. As a temporary workaround, consider disabling the affected API endpoint /goform/formSetDDNS until a patch is available.