CVE-2025-6614

A vulnerability, which was classified as critical, has been found in D-Link DIR-619L 2.06B01. Affected by this issue is the function formSetWANType_Wizard5 of the file /goform/formSetWANType_Wizard5. The manipulation of the argument curTime leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

Published: Jun 25, 2025
Updated: Jul 17, 2025
CVE: CVE-2025-6614
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-119
CWE-121

Affected Software
References

Software	From	Fixed in
dlink / dir-619l_firmware	2.06b1	2.06b1.x

https://github.com/wudipjq/my_vuln/blob/main/D-Link6/vuln_75/75.md
https://github.com/wudipjq/my_vuln/blob/main/D-Link6/vuln_75/75.md#poc
https://vuldb.com/?ctiid.313832
https://vuldb.com/?id.313832
https://vuldb.com/?submit.602257
https://www.dlink.com/

Vulnerability Database

CVE-2025-6614

Deep Security Visibility Without the Complexity