CVE-2025-13550 – D-Link DIR-822K/DWR-M920 formVpnConfigSetup buffer overflow

CVE ID : CVE-2025-13550

Published : Nov. 23, 2025, 12:32 p.m. | 49 minutes ago

Description : A vulnerability was determined in D-Link DIR-822K and DWR-M920 1.00_20250513164613/1.1.50. Impacted is an unknown function of the file /boafrm/formVpnConfigSetup. Executing manipulation of the argument submit-url can lead to buffer overflow. The attack can be executed remotely. The exploit has been publicly disclosed and may be utilized.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2025-13873 – The feature to import a survey is prone to stored Cross-Site Script attacks

CVE-2025-13872 – Blind Server-Side Request Forgery (SSRF) in the survey-import feature of ObjectPlanet Opinio

CVE-2025-13871 – The feature to manage resources is prone to Cross-Site Request Forgery attacks

CVE-2025-13870 – Unauthorized access and subscription vulnerability in Boards