CVE-2025-6614
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-06-25

Last updated on: 2025-07-16

Assigner: VulDB

Description
A vulnerability, which was classified as critical, has been found in D-Link DIR-619L 2.06B01. Affected by this issue is the function formSetWANType_Wizard5 of the file /goform/formSetWANType_Wizard5. The manipulation of the argument curTime leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-06-25
Last Modified
2025-07-16
Generated
2026-05-07
AI Q&A
2025-06-25
EPSS Evaluated
2026-05-05
NVD
CVE-2025-6614
EUVD
EUVD-2025-19105
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
dlink dir-619l_firmware 2.06b1
dlink dir-619l *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-119 The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
CWE-121 A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

CVE-2025-6614 is a critical stack-based buffer overflow vulnerability in the D-Link DIR-619L router (version 2.06B01). It occurs in the function formSetWANType_Wizard5 by manipulating the argument curTime with crafted input, causing a stack overflow. This flaw can be exploited remotely and easily, potentially compromising the device's confidentiality, integrity, and availability. [1]


How can this vulnerability impact me? :

This vulnerability can impact you by allowing a remote attacker to exploit the stack-based buffer overflow to compromise the affected router. This can lead to unauthorized access, disruption of service, and potential control over the device, affecting the confidentiality, integrity, and availability of your network. [1]


How can this vulnerability be detected on my network or system? Can you suggest some commands?

There are no specific detection commands or methods provided for this vulnerability. Since the exploit involves manipulating the argument curTime in the formSetWANType_Wizard5 function remotely, detection would likely require monitoring for unusual or malformed requests to the /goform/formSetWANType_Wizard5 endpoint. However, no explicit detection commands or tools are mentioned. [1]


What immediate steps should I take to mitigate this vulnerability?

No known countermeasures or mitigations have been identified for this vulnerability. The affected product, D-Link DIR-619L version 2.06B01, is no longer supported. The suggested immediate step is to replace the affected product with an alternative device that is supported and not vulnerable. [1]


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart