CVE-2025-60679
Last modified
CVE-2025-60679 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. A stack buffer overflow vulnerability exists in the D-Link DIR-816A2 router firmware DIR-816A2_FWv1.10CNB05_R1B011D88210.img in the upload.cgi module, which handles firmware version information. The vulnerability occurs because /proc/version is read into a 512-byte buffer and then concatenated using sprintf() into another 512-byte buffer containing a 29-byte constant. EPSS estimates a 0.58% chance of exploitation in the next 30 days.
Description
A stack buffer overflow vulnerability exists in the D-Link DIR-816A2 router firmware DIR-816A2_FWv1.10CNB05_R1B011D88210.img in the upload.cgi module, which handles firmware version information. The vulnerability occurs because /proc/version is read into a 512-byte buffer and then concatenated using sprintf() into another 512-byte buffer containing a 29-byte constant. Input exceeding 481 bytes triggers a stack buffer overflow, allowing an attacker who can control /proc/version content to potentially execute arbitrary code on the device.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Dlink | Dir-816 Firmware | 1.10cnb05_r1b011d88210 |
References
- http://d-link.comProduct
- https://github.com/yifan20020708/SGTaint-0-day/blob/main/DLink/DLink-DIR-816/CVE-2025-60679.mdExploit, Third Party Advisory
- https://www.dlink.com/enProduct
- https://www.dlink.com/en/security-bulletin/Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2025-60679?
How severe is CVE-2025-60679?
How do I fix CVE-2025-60679?
Are you affected by CVE-2025-60679?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST