Unrated severityNVD Advisory· Published Mar 20, 2025· Updated Mar 20, 2025

D-Link DIR-618/DIR-605L Firewall Service formAdvFirewall access control

CVE-2025-2546

Description

A vulnerability classified as problematic was found in D-Link DIR-618 and DIR-605L 2.02/3.02. This vulnerability affects unknown code of the file /goform/formAdvFirewall of the component Firewall Service. The manipulation leads to improper access controls. The attack needs to be approached within the local network. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

Affected products

Dlink/DIR-618llm-create
Range: 2.02
Dlink/Dir 605lllm-fuzzy
Range: 3.02
D-Link/DIR-605Lv5
Range: 2.02
D-Link/DIR-618v5
Range: 2.02

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lavender-bicycle-a5a.notion.site/D-Link-DIR-605L-formAdvFirewall-1b153a41781f80aca28ec11da787f0e8mitreexploit
vuldb.commitrethird-party-advisory
lavender-bicycle-a5a.notion.site/D-Link-DIR-618-formAdvFirewall-1b053a41781f801ca1a5e09bb83a22c5mitrerelated
vuldb.commitresignaturepermissions-required
vuldb.commitrevdb-entry
www.dlink.commitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000