CVE-2026-5981

HIGH CVSS 8.8 View on NVD ↗

Description

A vulnerability has been found in D-Link DIR-605L 2.13B01. This affects the function formAdvFirewall of the file /goform/formAdvFirewall of the component POST Request Handler. Such manipulation of the argument curTime leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

https://lavender-bicycle-a5a.notion.site/D-Link-DIR-605L-formAdvFirewall-33153a41781f80678733f4b12282f3fa?source=copy_link
https://vuldb.com/submit/791854
https://vuldb.com/vuln/356535
https://vuldb.com/vuln/356535/cti
https://www.dlink.com/

Published: Apr 09, 2026 22:16 UTC Modified: Apr 09, 2026 22:16 UTC