PT-2025-47844 · D Link · Dir-822+1
Hhsw34
·
Published
2025-11-12
·
Updated
2025-12-02
·
CVE-2025-13552
CVSS v2.0
9.0
High
| Vector | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
D-Link DIR-822K versions 1.00 20250513164613 and 1.1.50
D-Link DWR-M920 versions 1.00 20250513164613 and 1.1.50
Description
A buffer overflow issue exists in D-Link DIR-822K and DWR-M920 routers. The issue is related to the manipulation of the
submit-url argument within an unknown function of the /boafrm/formWlEncrypt file. This allows for a remote attack. The exploit for this issue has been publicly released.Recommendations
For D-Link DIR-822K version 1.00 20250513164613, update to a newer version that contains a fix for this vulnerability.
For D-Link DIR-822K version 1.1.50, update to a newer version that contains a fix for this vulnerability.
For D-Link DWR-M920 version 1.00 20250513164613, update to a newer version that contains a fix for this vulnerability.
For D-Link DWR-M920 version 1.1.50, update to a newer version that contains a fix for this vulnerability.
Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Dir-822
Dwr-M920