Multiple D-Link DIR Vulnerabilities

Severity

High

Analysis Summary

CVE-2025-70241 CVSS:9.8

D-Link DIR-513 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash via the curTime parameter to goform/formSetWANType_Wizard5.

CVE-2026-3485 CVSS:9.8

D-Link DIR-868L could allow a remote unauthenticated attacker to execute arbitrary commands on the system, caused by an OS command injection vulnerability in the sub_1BF84 function of the SSDP Service component.

Impact

Gain Access
Buffer Overflow

Indicators of Compromise

CVE

CVE-2025-70241
CVE-2026-3485

Affected Vendors

D-Link

Affected Products

D-Link DIR-513 v1.10
D-Link DIR-868L 110b03

Remediation

Refer to the D-Link Website for patch, upgrade, or suggested workaround information.

CVE-2025-70241

CVE-2026-3485

Rewterz Annual Threat Intelligence Report 2025 - Download Now

Iranian APTs Target Critical Infrastructure Amid Conflict – Active IOCs

MassLogger Malware – Active IOCs

Multiple D-Link DIR Vulnerabilities

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan