CVE-2025-60679
BaseFortify
Publication date: 2025-11-13
Last updated on: 2025-11-17
Assigner: MITRE
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| dlink | dir-816_firmware | 1.10cnb05_r1b011d88210 |
| dlink | dir-816 | a2 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-121 | A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a stack buffer overflow in the D-Link DIR-816A2 router firmware's upload.cgi module. It happens because the firmware reads the /proc/version file into a 512-byte buffer and then concatenates it into another 512-byte buffer with a 29-byte constant using sprintf(). If the input from /proc/version exceeds 481 bytes, it causes a stack buffer overflow, which can allow an attacker who controls the /proc/version content to execute arbitrary code on the device.
How can this vulnerability impact me? :
This vulnerability can allow an attacker to execute arbitrary code on the affected router device if they can control the /proc/version content. This could lead to unauthorized control over the device, potentially compromising network security, intercepting or altering network traffic, or using the device as a foothold for further attacks.