CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2025-4454 – D-Link DIR-619L wake_on_lan command injection
https://notcve.org/view.php?id=CVE-2025-4454
09 May 2025 — A vulnerability was found in D-Link DIR-619L 2.04B04. It has been declared as critical. This vulnerability affects the function wake_on_lan. The manipulation of the argument mac leads to command injection. The attack can be initiated remotely. • https://github.com/jylsec/vuldb/blob/main/D-Link/dlink_dir619l/Command_injection-wake_on_lan-mac/README.md • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2025-4453 – D-Link DIR-619L formSysCmd command injection
https://notcve.org/view.php?id=CVE-2025-4453
09 May 2025 — A vulnerability was found in D-Link DIR-619L 2.04B04. It has been classified as critical. This affects the function formSysCmd. The manipulation of the argument sysCmd leads to command injection. It is possible to initiate the attack remotely. • https://github.com/jylsec/vuldb/blob/main/D-Link/dlink_dir619l/Command_injection-formSysCmd-sysCmd/README.md • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2025-4452 – D-Link DIR-619L formSetWizard2 buffer overflow
https://notcve.org/view.php?id=CVE-2025-4452
09 May 2025 — A vulnerability was found in D-Link DIR-619L 2.04B04 and classified as critical. Affected by this issue is the function formSetWizard2. The manipulation of the argument curTime leads to buffer overflow. The attack may be launched remotely. The vendor was contacted early about this disclosure. • https://github.com/jylsec/vuldb/blob/main/D-Link/dlink_dir619l/Buffer_overflow-formSetWizard2-curTime/README.md • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2025-4451 – D-Link DIR-619L formSetWAN_Wizard52 buffer overflow
https://notcve.org/view.php?id=CVE-2025-4451
09 May 2025 — A vulnerability has been found in D-Link DIR-619L 2.04B04 and classified as critical. Affected by this vulnerability is the function formSetWAN_Wizard52. The manipulation of the argument curTime leads to buffer overflow. The attack can be launched remotely. The vendor was contacted early about this disclosure. • https://github.com/jylsec/vuldb/blob/main/D-Link/dlink_dir619l/Buffer_overflow-formSetWAN_Wizard52-curTime/README.md • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2025-4450 – D-Link DIR-619L formSetEasy_Wizard buffer overflow
https://notcve.org/view.php?id=CVE-2025-4450
09 May 2025 — A vulnerability, which was classified as critical, was found in D-Link DIR-619L 2.04B04. Affected is the function formSetEasy_Wizard. The manipulation of the argument curTime leads to buffer overflow. It is possible to launch the attack remotely. The vendor was contacted early about this disclosure. • https://github.com/jylsec/vuldb/blob/main/D-Link/dlink_dir619l/Buffer_overflow-formSetEasy_Wizard-curTime/README.md • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 1CVE-2023-43865
https://notcve.org/view.php?id=CVE-2023-43865
28 Sep 2023 — D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanPPTP function. D-Link DIR-619L B1 2.02 es vulnerable al desbordamiento del búfer a través de la función formSetWanPPTP. • https://github.com/YTrick/vuln/blob/main/DIR-619L%20Buffer%20Overflow_1.md • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 1CVE-2023-43866
https://notcve.org/view.php?id=CVE-2023-43866
28 Sep 2023 — D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWAN_Wizard7 function. D-Link DIR-619L B1 2.02 es vulnerable al desbordamiento del búfer a través de la función formSetWAN_Wizard7. • https://github.com/YTrick/vuln/blob/main/DIR-619L%20Buffer%20Overflow_1.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 3%CPEs: 2EXPL: 1CVE-2023-43869
https://notcve.org/view.php?id=CVE-2023-43869
28 Sep 2023 — D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWAN_Wizard56 function. D-Link DIR-619L B1 2.02 es vulnerable al desbordamiento del búfer a través de la función formSetWAN_Wizard56. • https://github.com/YTrick/vuln/blob/main/DIR-619L%20Buffer%20Overflow_1.md • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 1CVE-2023-43861
https://notcve.org/view.php?id=CVE-2023-43861
28 Sep 2023 — D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanPPPoE function. El D-Link DIR-619L B1 2.02 es vulnerable al desbordamiento del búfer a través de la función formSetWanPPPoE. • https://github.com/YTrick/vuln/blob/main/DIR-619L%20Buffer%20Overflow_1.md • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 1CVE-2023-43867
https://notcve.org/view.php?id=CVE-2023-43867
28 Sep 2023 — D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanL2TP function. D-Link DIR-619L B1 2.02 es vulnerable al desbordamiento del búfer a través de la función formSetWanL2TP. • https://github.com/YTrick/vuln/blob/main/DIR-619L%20Buffer%20Overflow_1.md • CWE-787: Out-of-bounds Write •