CVE-2025-15189

Summary

A vulnerability was identified in D-Link DWR-M920 up to 1.1.50. This issue affects the function sub_464794 of the file /boafrm/formDefRoute. The manipulation of the argument submit-url leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be used.

Affected Software

VendorProductVersion RangeStatus
D-LinkDWR-M9201.1.0affected
D-LinkDWR-M9201.1.1affected
D-LinkDWR-M9201.1.2affected
D-LinkDWR-M9201.1.3affected
D-LinkDWR-M9201.1.4affected
D-LinkDWR-M9201.1.5affected
D-LinkDWR-M9201.1.6affected
D-LinkDWR-M9201.1.7affected
D-LinkDWR-M9201.1.8affected
D-LinkDWR-M9201.1.9affected
D-LinkDWR-M9201.1.10affected
D-LinkDWR-M9201.1.11affected
D-LinkDWR-M9201.1.12affected
D-LinkDWR-M9201.1.13affected
D-LinkDWR-M9201.1.14affected
D-LinkDWR-M9201.1.15affected
D-LinkDWR-M9201.1.16affected
D-LinkDWR-M9201.1.17affected
D-LinkDWR-M9201.1.18affected
D-LinkDWR-M9201.1.19affected
D-LinkDWR-M9201.1.20affected
D-LinkDWR-M9201.1.21affected
D-LinkDWR-M9201.1.22affected
D-LinkDWR-M9201.1.23affected
D-LinkDWR-M9201.1.24affected
D-LinkDWR-M9201.1.25affected
D-LinkDWR-M9201.1.26affected
D-LinkDWR-M9201.1.27affected
D-LinkDWR-M9201.1.28affected
D-LinkDWR-M9201.1.29affected
D-LinkDWR-M9201.1.30affected
D-LinkDWR-M9201.1.31affected
D-LinkDWR-M9201.1.32affected
D-LinkDWR-M9201.1.33affected
D-LinkDWR-M9201.1.34affected
D-LinkDWR-M9201.1.35affected
D-LinkDWR-M9201.1.36affected
D-LinkDWR-M9201.1.37affected
D-LinkDWR-M9201.1.38affected
D-LinkDWR-M9201.1.39affected
D-LinkDWR-M9201.1.40affected
D-LinkDWR-M9201.1.41affected
D-LinkDWR-M9201.1.42affected
D-LinkDWR-M9201.1.43affected
D-LinkDWR-M9201.1.44affected
D-LinkDWR-M9201.1.45affected
D-LinkDWR-M9201.1.46affected
D-LinkDWR-M9201.1.47affected
D-LinkDWR-M9201.1.48affected
D-LinkDWR-M9201.1.49affected
D-LinkDWR-M9201.1.50affected

Weaknesses

  • CWE-120: Buffer Overflow
  • CWE-119: Memory Corruption

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: total

References