Home / Vulnerability Intelligence / CVE-2026-5983

CVE-2026-5983 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: April 9, 2026

D-Link DIR-605L - Buffer Overflow

Published: April 9, 2026Updated: April 9, 2026Remote Exploitable

Overview

D-Link DIR-605L 2.13B01 contains a buffer overflow caused by manipulation of the "curTime" argument in /goform/formSetDDNS POST Request Handler, letting remote attackers cause memory corruption, exploit requires crafted request.

Severity & Score

Severity: High

CVSS Score: 8.8

Impact

Remote attackers can cause memory corruption leading to potential code execution or system crash.

Mitigation

Upgrade to the latest supported version or replace the device as it is no longer maintained.

References

https://lavender-bicycle-a5a.notion.site/D-Link-DIR-605L-formSetDDNS-33153a41781f802f9997f48dc9cf6304?source=copy_link
https://vuldb.com/submit/791856
https://vuldb.com/vuln/356537
https://vuldb.com/vuln/356537/cti
https://www.dlink.com/

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-5983
Severity: High
CVSS Score: 8.8
Type: buffer_overflow
Status: new

CWE

CWE-119

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H