CVE-2025-2549

Name of the Vulnerable Software and Affected Versions D-Link DIR-618 versions 2.02/3.02 D-Link DIR-605L versions 2.02/3.02

Description A vulnerability has been found in the affected devices, classified as problematic. It affects an unknown functionality of the file /goform/formSetPassword, leading to improper access controls. The attack must be done within the local network. This issue only affects products that are no longer supported by the maintainer.

Recommendations For D-Link DIR-618 versions 2.02/3.02, consider restricting access to the /goform/formSetPassword file to minimize the risk of exploitation. For D-Link DIR-605L versions 2.02/3.02, consider restricting access to the /goform/formSetPassword file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.