CVE-2025-4449

Name of the Vulnerable Software and Affected Versions D-Link DIR-619L version 2.04B04

Description A critical issue has been found in the function formEasySetupWizard3, where the manipulation of the argument wan connected leads to a buffer overflow. This issue can be exploited remotely. The vendor was contacted about this disclosure. It's noted that this vulnerability only affects products that are no longer supported by the maintainer.

Recommendations For D-Link DIR-619L version 2.04B04, as a temporary workaround, consider disabling the formEasySetupWizard3 function until a patch is available. However, since the product is no longer supported, at the moment, there is no information about a newer version that contains a fix for this vulnerability.