ID:12126 - Exploit for Buffer overflow in D-Link products - CVE-2025-13304

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:12126 - Exploit for Buffer overflow in D-Link products - CVE-2025-13304

ID:12126 - Exploit for Buffer overflow in D-Link products - CVE-2025-13304

Published: November 25, 2025


Vulnerability identifier: #VU118749
Vulnerability risk: Medium
CVE-ID: CVE-2025-13304
CWE-ID: CWE-119
Exploitation vector: Remote access
Vulnerable software:
DWR-M920
DWR-M921
DWR-M960
DWR-M961
DIR-825M

Link to public exploit:


Vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in the "/boafrm/formPingDiagnosticRun" file. A remote user can trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.


Remediation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.