CVE-2026-5984

CWE-119Buffer OverflowCWE-120Classic Buffer Overflow3 documents3 sources
Severity
7.4HIGH
EPSS
0.0%
top 95.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
D-link Dir-605l
Timeline
PublishedApr 9
Latest updateApr 10

Description

A vulnerability was identified in D-Link DIR-605L 2.13B01. Impacted is the function formSetLog of the file /goform/formSetLog of the component POST Request Handler. The manipulation of the argument curTime leads to buffer overflow. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. This vulnerability only affects products that are no longer supported by the maintainer.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages1 packages

CVEListV5d-link/dir-605l2.13B01

🔴Vulnerability Details

2
GHSA
GHSA-vrqw-grr3-6x6h: A vulnerability was identified in D-Link DIR-605L 22026-04-10
CVEList
D-Link DIR-605L POST Request formSetLog buffer overflow2026-04-09
CVE-2026-5984 (HIGH CVSS 7.4) | A vulnerability was identified in D | cvebase.io