Vulnerability Description
A vulnerability has been found in D-Link DIR-825 2.03 and classified as critical. This vulnerability affects the function sub_4091AC of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dlink | Dir-825 Firmware | 2.03 |
| Dlink | Dir-825 | - |
Related Weaknesses (CWE)
References
- https://github.com/xiaobor123/vul-finds/tree/main/vul-find-dir825-dlink-sub_4091ExploitThird Party Advisory
- https://github.com/xiaobor123/vul-finds/tree/main/vul-find-dir825-dlink-sub_4091ExploitThird Party Advisory
- https://vuldb.com/?ctiid.313294Permissions RequiredVDB Entry
- https://vuldb.com/?id.313294Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.593938Third Party AdvisoryVDB Entry
- https://www.dlink.com/Product
- https://github.com/xiaobor123/vul-finds/tree/main/vul-find-dir825-dlink-sub_4091ExploitThird Party Advisory
FAQ
What is CVE-2025-6292?
CVE-2025-6292 is a vulnerability with a CVSS score of 8.8 (HIGH). A vulnerability has been found in D-Link DIR-825 2.03 and classified as critical. This vulnerability affects the function sub_4091AC of the component HTTP POST Request Handler. The manipulation leads ...
How severe is CVE-2025-6292?
CVE-2025-6292 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-6292?
Check the references section above for vendor advisories and patch information. Affected products include: Dlink Dir-825 Firmware, Dlink Dir-825.