Unrated severityNVD Advisory· Published Mar 20, 2025· Updated Mar 20, 2025

D-Link DIR-618/DIR-605L formTcpipSetup access control

CVE-2025-2552

Description

A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02. It has been declared as problematic. This vulnerability affects unknown code of the file /goform/formTcpipSetup. The manipulation leads to improper access controls. Access to the local network is required for this attack to succeed. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

Affected products

Dlink/Dir 605lllm-fuzzy
Range: = 3.02
Dlink/DIR-618llm-fuzzy
Range: = 2.02
D-Link/DIR-605Lv5
Range: 2.02
D-Link/DIR-618v5
Range: 2.02

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lavender-bicycle-a5a.notion.site/D-Link-DIR-605L-formTcpipSetup-1b153a41781f80a7967ae08c81147a39mitreexploit
vuldb.commitrethird-party-advisory
lavender-bicycle-a5a.notion.site/D-Link-DIR-618-formTcpipSetup-1b053a41781f80fbbf94fda0c3b5ebfamitrerelated
vuldb.commitresignaturepermissions-required
vuldb.commitrevdb-entry
www.dlink.commitrebroken-linkproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000