LeakyCreds
NewInstant webhook alerts now available ā€” notified within seconds of any credential detection.Learn more ā†’
Home / Vulnerability Intelligence / CVE-2025-70245

CVE-2025-70245 - Vulnerability Analysis

CriticalCVSS: 9.8

Last Updated: March 13, 2026

D-Link DIR-513 - Buffer Overflow

Published: March 12, 2026Updated: March 13, 2026PoC AvailableRemote Exploitable

Overview

D-Link DIR-513 v1.10 contains a buffer overflow caused by improper handling of the curTime parameter in goform/formSetWizardSelectMode, letting remote attackers cause a crash or execute code, exploit requires crafted request.

Severity & Score

Severity: Critical
CVSS Score: 9.8
EPSS Score: 3.8%(Probability of exploitation in next 30 days)

Impact

Remote attackers can cause a crash or execute arbitrary code, potentially leading to full system compromise.

Mitigation

Update to the latest firmware version.

References

Social Media Activity(2 posts)

TheHackerWire
TheHackerWire
@thehackerwire
Mar 13, 2026

šŸ”“ CVE-2025-70245 - Critical (9.8) Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWizardSelectMode. šŸ”— https://www.thehackerwire.com/vulnerability/CVE-2025-70245/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post
TheHackerWire
TheHackerWire
@thehackerwire
Mar 13, 2026

šŸ”“ CVE-2025-70245 - Critical (9.8) Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWizardSelectMode. šŸ”— https://www.thehackerwire.com/vulnerability/CVE-2025-70245/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

Related Resources

Details

CVE ID
CVE-2025-70245
Severity
Critical
CVSS Score
9.8
Type
buffer_overflow
Status
modified
EPSS
3.8%
Social Posts
2

CWE

  • CWE-787
  • CWE-121

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

3.8%Probability of exploitation in the next 30 days