CVE-2026-5982

HIGH

A vulnerability was found in D-Link DIR-605L 2.13B01. This vulnerability affects the function formAdvNetwork of the file /goform/formAdvNetwork of the component POST Request Handler. Performing a manipulation of the argument curTime results in buffer overflow. Remote exploitation of the attack is possible. The exploit has been made public and could be used. This vulnerability only affects products that are no longer supported by the maintainer.

CVSS v3.1 Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Complexity

LOW

Privileges

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Published: 4/9/2026Modified: 4/30/2026

Related Intelligence (0)

No articles currently reference this CVE.

References (5)

https://lavender-bicycle-a5a.notion.site/D-Link-DIR-605L-formAdvNetwork-33153a41781f80f9a47bd5e073fc00ae?source=copy_linkExploitThird Party Advisory https://vuldb.com/submit/791855Third Party AdvisoryVDB Entry https://vuldb.com/vuln/356536Third Party AdvisoryVDB Entry https://vuldb.com/vuln/356536/ctiPermissions RequiredVDB Entry https://www.dlink.com/Product