High severity8.8NVD Advisory· Published Mar 20, 2026· Updated Apr 3, 2026
CVE-2026-4486
CVE-2026-4486
Description
A vulnerability was found in D-Link DIR-513 1.10. This affects the function formEasySetPassword of the file /goform/formEasySetPassword of the component Web Service. The manipulation of the argument curTime results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been made public and could be used. This vulnerability only affects products that are no longer supported by the maintainer.
Affected products
1- cpe:2.3:o:dlink:dir-513_firmware:1.10:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- github.com/InfiniteLin/Lin-s-CVEdb/blob/main/DIR-513/formEasySetPassword/formEasySetPassword.mdnvdExploitThird Party Advisory
- github.com/InfiniteLin/Lin-s-CVEdb/blob/main/DIR-513/formEasySetPassword/poc.pynvdExploit
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdPermissions RequiredVDB Entry
- vuldb.comnvdIssue TrackingVDB Entry
- www.dlink.comnvdProduct
News mentions
0No linked articles in our index yet.