PT-2025-47013 · D Link · Dir-816

Lexpl0It

Published

2025-11-14

Updated

2025-11-20

CVE-2025-13188

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions D-Link DIR-816L version 2 06 b09 beta

Description A stack-based buffer overflow exists in the authenticationcgi main function within the /authentication.cgi file of the D-Link DIR-816L. Manipulation of the Password argument allows for remote exploitation. The exploit is publicly available. This issue affects a product that is no longer supported by the maintainer.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Stack Overflow

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-121CWE-119

Related Identifiers

BDU:2025-14622

CVE-2025-13188

Affected Products

Dir-816

PT-2025-47013 · D Link · Dir-816

CVE-2025-13188

Weakness Enumeration

Related Identifiers

Affected Products

References · 17