Home / Vulnerability Intelligence / CVE-2026-5982

CVE-2026-5982 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: April 9, 2026

D-Link DIR-605L - Buffer Overflow

Published: April 9, 2026Updated: April 9, 2026Remote Exploitable

Overview

D-Link DIR-605L 2.13B01 contains a buffer overflow caused by manipulation of the "curTime" argument in /goform/formAdvNetwork POST request handler, letting remote attackers cause memory corruption, exploit requires crafted POST request.

Severity & Score

Severity: High

CVSS Score: 8.8

Impact

Remote attackers can cause memory corruption, potentially leading to remote code execution or device compromise.

Mitigation

Update to the latest supported version or replace the device as it is no longer maintained.

References

https://lavender-bicycle-a5a.notion.site/D-Link-DIR-605L-formAdvNetwork-33153a41781f80f9a47bd5e073fc00ae?source=copy_link
https://vuldb.com/submit/791855
https://vuldb.com/vuln/356536
https://vuldb.com/vuln/356536/cti
https://www.dlink.com/

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-5982
Severity: High
CVSS Score: 8.8
Type: buffer_overflow
Status: new

CWE

CWE-119

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H