Buffer Overflow Vulnerability in D-Link DIR-825 v1.33.0.44ebdd4-embedded and below allows attacker to execute arbitrary code via the GetConfig method to the /CPE endpoint.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HDlink Dir 825
HWDlinkwszystkie wersjeDlink Dir 825 Firmware
OSDlink≤ 1.33.0.44ebdd4-embedded
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEMemory
Related vulnerabilities
CVE-2020-29557CRITICAL9.8⚠ KEVten sam produkt
An issue was discovered on D-Link DIR-825 R1 devices through 3.0.1 before 2020-11-20. A buffer overflow in the...
CVE-2019-16920CRITICAL9.8⚠ KEVten sam produkt
Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1...
CVE-2021-46442CRITICAL9.8ten sam produkt
In the "webupg" binary of D-Link DIR-825 G1, attackers can bypass authentication through parameters "autoupgra...
CVE-2026-7068HIGH7.4ten sam produkt
A vulnerability was identified in D-Link DIR-825 3.00b32. This affects the function NMBD_process of the file s...
CVE-2026-7069HIGH7.3ten sam produkt
A security flaw has been discovered in D-Link DIR-825 up to 3.00b32. This impacts the function AddPortMapping ...