Unrated severityNVD Advisory· Published Jul 20, 2025· Updated Jul 21, 2025

D-Link DIR-513 Boa Webserver formSetWanNonLogin sprintf stack-based overflow

CVE-2025-7910

Description

A vulnerability classified as critical has been found in D-Link DIR-513 1.10. This affects the function sprintf of the file /goform/formSetWanNonLogin of the component Boa Webserver. The manipulation of the argument curTime leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

Affected products

Dlink/DIR-513llm-fuzzy
Range: 1.10
D-Link/DIR-513v5
Range: 1.10

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/buobo/bo-s-CVE/blob/main/DIR-513/formSetWanNonLogin.mdmitreexploit
vuldb.commitrethird-party-advisory
vuldb.commitresignaturepermissions-required
vuldb.commitrevdb-entrytechnical-description
www.dlink.commitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000