CNNVD-202511-2583 Information

Nov 23, 2025 cve

CNNVD ID

CNNVD-202511-2583

CVE-2025-13547

CNNVD Published: 2025-11-23

Description (Chinese)

D-Link DWR-M920和D-Link DIR-822K都是中国友讯（D-Link）公司的产品。D-Link DWR-M920是一款路由器。D-Link DIR-822K是一款无线路由器。 D-Link DWR-M920和D-Link DIR-822K 1.00_20250513164613/1.1.50版本存在缓冲区错误漏洞，该漏洞源于文件/boafrm/formDdns中参数submit-url的错误操作，可能导致内存损坏。

Description (English)

D-Link DWR-M920 and D-Link DIR-822K are products of the Chinese company D-Link. D-Link DWR-M920 is a router. D-Link DIR-822K is a wireless router. Versions D-Link DWR-M920 and D-Link DIR-822K 1.00 20250513161613/1.1.50 contain an error loop in the buffer zone resulting from the error of the parameter submit-url in the document/boafrm/formDdns, which may cause memory damage.

Hazard Level

Medium

Vulnerability Type

缓冲区错误

Affected Vendor

友讯

Published

2025-11-23

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.333314 https://vuldb.com/?submit.695428 https://www.dlink.com/ https://github.com/QIU-DIE/CVE/issues/30 https://github.com/QIU-DIE/CVE/issues/42 https://vuldb.com/?id.333314 https://vuldb.com/?submit.693758 https://access.redhat.com/security/cve/cve-2025-13547

Share on: