CVE-2025-6114

CVE-2025-6114

Information

CVE_ID              : CVE-2025-6114
Severity            : HIGH
Published        : 2025-06-16T09:15:20.013
LastModified  : 2025-06-17T20:32:17.510
Updated          : 2025-06-17T20:32:17.510
Status              : Analyzed

Descriptions:

A vulnerability has been found in D-Link DIR-619L 2.06B01 and classified as critical. Affected by this vulnerability is the function form_portforwarding of the file /goform/form_portforwarding. The manipulation of the argument ingress_name_%d/sched_name_%d/name_%d leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.


Know Exploitability

Exploitability : False

Vendor Affected

dlink

CVE-2025-6114

V4.0

Score : 7.4
Severity : HIGH
Attack Vector : NETWORK
Attack Complexity : LOW
Privileges Required : LOW
User Interaction : NONE
Scope :
Confidentiality Impact :
Integrity Impact :
Availability Impact :
Exploitability :
Impact Score :

V3.1

Score : 8.8
Severity : HIGH
Attack Vector : NETWORK
Attack Complexity : LOW
Privileges Required : LOW
User Interaction : NONE
Scope : UNCHANGED
Confidentiality Impact : HIGH
Integrity Impact : HIGH
Availability Impact : HIGH
Exploitability : 2.8
Impact Score : 5.9

V3.0

V2.0

Score : 9.0
Severity : HIGH
Access Vector : NETWORK
Access Complexity : LOW
Authentication : SINGLE
Confidentiality Impact : COMPLETE
Integrity Impact : COMPLETE
Availability Impact : COMPLETE
Exploitability Score : 8.0
Impact Score : 10.0
References

https://github.com/wudipjq/my_vuln/blob/main/D-Link6/vuln_60/60.md

https://github.com/wudipjq/my_vuln/blob/main/D-Link6/vuln_60/60.md#poc

https://vuldb.com/?ctiid.312583

https://vuldb.com/?id.312583

https://vuldb.com/?submit.592568

https://www.dlink.com/

Vendor Product
dlink
  • dir-619l_firmware2.06b01****
  • dir-619l-****