CVE-2025-4441: D-Link DIR-605L formSetWAN_Wizard534 buffer overflow
First published: Thu May 08 2025(Updated: )
A vulnerability was found in D-Link DIR-605L 2.13B01. It has been classified as critical. This affects the function formSetWAN_Wizard534. The manipulation of the argument curTime leads to buffer overflow. It is possible to initiate the attack remotely. The vendor was contacted early about this disclosure. This vulnerability only affects products that are no longer supported by the maintainer.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| D-Link DIR-605L Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-4441?
CVE-2025-4441 is classified as a critical vulnerability.
What systems are affected by CVE-2025-4441?
CVE-2025-4441 affects the D-Link DIR-605L firmware version 2.13B01.
What type of vulnerability is CVE-2025-4441?
CVE-2025-4441 is a buffer overflow vulnerability caused by the manipulation of the curTime argument.
Can CVE-2025-4441 be exploited remotely?
Yes, CVE-2025-4441 can be exploited remotely.
How can I mitigate CVE-2025-4441?
To mitigate CVE-2025-4441, it is recommended to update the D-Link DIR-605L firmware to the latest version.
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/weakness
- agent/references
- agent/type
- agent/description
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/author
- agent/severity
- agent/last-modified-date
- agent/event
- collector/epss-latest
- source/FIRST
- agent/source
- agent/tags
- agent/epss
- vendor/d-link
- canonical/d-link dir-605l firmware