Vulnerabilities > CVE-2025-25742 - Out-of-bounds Write vulnerability in Dlink Dir-853 Firmware 1.20B07

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

dlink

CWE-787

critical

NVD

Published: 2025-02-12

Updated: 2025-02-19

Summary

D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the AccountPassword parameter in the SetSysEmailSettings module.

Vulnerable Configurations

Part	Description	Count
OS	Dlink Dlink DIR 853 Firmware 1.20B07	1
Hardware	Dlink Dlink DIR 853 A1	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://dear-sunshine-ba5.notion.site/D-Link-DIR-853-3-1812386a664480feaf1ceab444b132b3