CVE-2025-6334

A vulnerability has been found in D-Link DIR-867 1.0 and classified as critical. This vulnerability affects the function strncpy of the component Query String Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

Published: Jun 20, 2025
Updated: Jun 21, 2025
CVE: CVE-2025-6334
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-119
CWE-121

Affected Software
References

Software	From	Fixed in
dlink / dir-867_firmware	1.0	1.0.x

https://github.com/Thir0th/Thir0th-CVE/blob/main/DIR-867%20AC1750.md
https://vuldb.com/?ctiid.313330
https://vuldb.com/?id.313330
https://vuldb.com/?submit.596579
https://www.dlink.com/

Vulnerability Database

CVE-2025-6334

Deep Security Visibility Without the Complexity