CNNVD-202511-1794 Information

Nov 15, 2025 cve

CNNVD ID

CNNVD-202511-1794

CVE-2025-13189

CNNVD Published: 2025-11-15

Description (Chinese)

D-Link DIR-816L是中国友讯（D-Link）公司的一款无线路由器。 D-Link DIR-816L 2_06_b09_beta版本存在安全漏洞，该漏洞源于文件gena.cgi中参数SERVER_ID/HTTP_SID的错误操作，可能导致基于栈的缓冲区溢出。

Description (English)

D-Link DIR-816L is a wireless router of D-Link. The D-Link DIR-816L 2 06 b09 beta version contains a security loophole, which stems from the error of the parameter SERVER ID/HTTP SID in document gena.cgi, which may result in a spill-based buffer zone.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

友讯

Published

2025-11-15

Last Modified

2026-02-24

References

https://github.com/scanleale/IOT_sec/blob/main/DIR-816L%20stack%20overflow(gena.cgi).pdf https://vuldb.com/?ctiid.332478 https://vuldb.com/?id.332478 https://vuldb.com/?submit.685540 https://www.dlink.com/ https://access.redhat.com/security/cve/cve-2025-13189

Share on: