CVE-2026-3978

Name of the Vulnerable Software and Affected Versions D-Link DIR-513 version 1.10

Description A flaw exists in D-Link DIR-513 version 1.10 that allows remote attackers to trigger a stack-based buffer overflow. The issue is located within an unknown function of the /goform/formEasySetupWizard3 file. Manipulation of the wan connected argument leads to the overflow. The exploit for this issue is publicly available and has been observed in real-world exploitation attempts, with initial exploitation attempts detected within minutes of public disclosure. Approximately 23 minutes after the vulnerability was cataloged, exploitation attempts were observed on vulnerable routers.

Recommendations For D-Link DIR-513 version 1.10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.