Vulnerabilities > CVE-2025-2620 - Out-of-bounds Write vulnerability in Dlink Dap-1620 Firmware 1.03

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

dlink

CWE-787

NVD

Published: 2025-03-22

Updated: 2025-03-26

Summary

A vulnerability has been found in D-Link DAP-1620 1.03 and classified as critical. This vulnerability affects the function mod_graph_auth_uri_handler of the file /storage of the component Authentication Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

Vulnerable Configurations

Part	Description	Count
OS	Dlink Dlink DAP 1620 Firmware 1.03	1
Hardware	Dlink Dlink DAP 1620 *	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://vuldb.com/?ctiid.300622
https://vuldb.com/?id.300622
https://vuldb.com/?submit.518969
https://witty-maiasaura-083.notion.site/D-link-DAP-1620-mod_graph_auth_uri_handler-Vulnerability-1afb2f2a6361809ea7f2dc4df3b85f1f
https://witty-maiasaura-083.notion.site/D-link-DAP-1620-mod_graph_auth_uri_handler-Vulnerability-1afb2f2a6361809ea7f2dc4df3b85f1f
https://www.dlink.com/