CVE-2025-13304 - Vulnerability Details

- D-Link DWR-M920/DWR-M921/DWR-M960/DWR-M961/DIR-825M formPingDiagnosticRun buffer overflow

Description

A security flaw has been discovered in D-Link DWR-M920, DWR-M921, DWR-M960, DWR-M961 and DIR-825M 1.01.07/1.1.47. This vulnerability affects unknown code of the file /boafrm/formPingDiagnosticRun. Performing manipulation of the argument host results in buffer overflow. The attack may be initiated remotely. The exploit has been released to the public and may be exploited.

Published: 2025-11-17

Score: 8.7 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

D-Link

DWR-M920

affected

Version	Status	Constraints
`1.01.07`	affected	—
`1.1.47`	affected	—

D-Link

DWR-M921

affected

Version	Status	Constraints
`1.01.07`	affected	—
`1.1.47`	affected	—

D-Link

DWR-M960

affected

Version	Status	Constraints
`1.01.07`	affected	—
`1.1.47`	affected	—

D-Link

DWR-M961

affected

Version	Status	Constraints
`1.01.07`	affected	—
`1.1.47`	affected	—

D-Link

DIR-825M

affected

Version	Status	Constraints
`1.01.07`	affected	—
`1.1.47`	affected	—

Configuration 1 [-]

AND

OR	cpe:2.3:o:dlink:dir-825m_firmware:1.01.07:::::::*
	cpe:2.3:o:dlink:dir-825m_firmware:1.1.47:::::::*

cpe:2.3:h:dlink:dir-825m:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

OR	cpe:2.3:o:dlink:dwr-m920_firmware:1.01.07:::::::*
	cpe:2.3:o:dlink:dwr-m920_firmware:1.1.47:::::::*

cpe:2.3:h:dlink:dwr-m920:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

OR	cpe:2.3:o:dlink:dwr-m921_firmware:1.01.07:::::::*
	cpe:2.3:o:dlink:dwr-m921_firmware:1.1.47:::::::*

cpe:2.3:h:dlink:dwr-m921:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

OR	cpe:2.3:o:dlink:dwr-m961_firmware:1.01.07:::::::*
	cpe:2.3:o:dlink:dwr-m961_firmware:1.1.47:::::::*

cpe:2.3:h:dlink:dwr-m961:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

OR	cpe:2.3:o:dlink:dwr-m960_firmware:1.01.07:::::::*
	cpe:2.3:o:dlink:dwr-m960_firmware:1.1.47:::::::*

cpe:2.3:h:dlink:dwr-m960:b1:*:*:*:*:*:*:*

No data.

Vendor	Product	Confidence	Versions
D-link	Dir-825	—	—
D-link	Dwr-920	—	—
D-link	Dwr-921	—	—
D-link	Dwr-960	—	—
D-link	Dwr-961	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.00587.

Exploitation poc

Automatable no

Technical Impact total

References

Link	Providers
https://github.com/LX-LX88/cve/issues/11
https://vuldb.com/?ctiid.332644
https://vuldb.com/?id.332644
https://vuldb.com/?submit.691808
https://vuldb.com/?submit.691810
https://vuldb.com/?submit.691812
https://vuldb.com/?submit.691817
https://vuldb.com/?submit.691821
https://www.dlink.com/

History

Mon, 08 Dec 2025 14:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Dlink Dlink dir-825m Dlink dir-825m Firmware Dlink dwr-m920 Dlink dwr-m920 Firmware Dlink dwr-m921 Dlink dwr-m921 Firmware Dlink dwr-m960 Dlink dwr-m960 Firmware Dlink dwr-m961 Dlink dwr-m961 Firmware
CPEs		cpe:2.3:h:dlink:dir-825m:-:::::::* cpe:2.3:h:dlink:dwr-m920:-:::::::* cpe:2.3:h:dlink:dwr-m921:-:::::::* cpe:2.3:h:dlink:dwr-m960:b1:::::::* cpe:2.3:h:dlink:dwr-m961:-:::::::* cpe:2.3:o:dlink:dir-825m_firmware:1.01.07:::::::* cpe:2.3:o:dlink:dir-825m_firmware:1.1.47:::::::* cpe:2.3:o:dlink:dwr-m920_firmware:1.01.07:::::::* cpe:2.3:o:dlink:dwr-m920_firmware:1.1.47:::::::* cpe:2.3:o:dlink:dwr-m921_firmware:1.01.07:::::::* cpe:2.3:o:dlink:dwr-m921_firmware:1.1.47:::::::* cpe:2.3:o:dlink:dwr-m960_firmware:1.01.07:::::::* cpe:2.3:o:dlink:dwr-m960_firmware:1.1.47:::::::* cpe:2.3:o:dlink:dwr-m961_firmware:1.01.07:::::::* cpe:2.3:o:dlink:dwr-m961_firmware:1.1.47:::::::*
Vendors & Products		Dlink Dlink dir-825m Dlink dir-825m Firmware Dlink dwr-m920 Dlink dwr-m920 Firmware Dlink dwr-m921 Dlink dwr-m921 Firmware Dlink dwr-m960 Dlink dwr-m960 Firmware Dlink dwr-m961 Dlink dwr-m961 Firmware

Tue, 18 Nov 2025 17:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 18 Nov 2025 09:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		D-link D-link dir-825 D-link dwr-920 D-link dwr-921 D-link dwr-960 D-link dwr-961
Vendors & Products		D-link D-link dir-825 D-link dwr-920 D-link dwr-921 D-link dwr-960 D-link dwr-961

Mon, 17 Nov 2025 22:45:00 +0000

Type	Values Removed	Values Added
Description		A security flaw has been discovered in D-Link DWR-M920, DWR-M921, DWR-M960, DWR-M961 and DIR-825M 1.01.07/1.1.47. This vulnerability affects unknown code of the file /boafrm/formPingDiagnosticRun. Performing manipulation of the argument host results in buffer overflow. The attack may be initiated remotely. The exploit has been released to the public and may be exploited.
Title		D-Link DWR-M920/DWR-M921/DWR-M960/DWR-M961/DIR-825M formPingDiagnosticRun buffer overflow
Weaknesses		CWE-119 CWE-120
References		https://github.com/LX-LX88/cve/issues/11 https://vuldb.com/?ctiid.332644 https://vuldb.com/?id.332644 https://vuldb.com/?submit.691808 https://vuldb.com/?submit.691810 https://vuldb.com/?submit.691812 https://vuldb.com/?submit.691817 https://vuldb.com/?submit.691821 https://www.dlink.com/
Metrics		cvssV2_0 `{'score': 9, 'vector': 'AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR'}` cvssV3_0 `{'score': 8.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}` cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}` cvssV4_0 `{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}`

Subscriptions

D-link Dir-825 Dwr-920 Dwr-921 Dwr-960 Dwr-961

Dlink Dir-825m Dir-825m Firmware Dwr-m920 Dwr-m920 Firmware Dwr-m921 Dwr-m921 Firmware Dwr-m960 Dwr-m960 Firmware Dwr-m961 Dwr-m961 Firmware

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2025-11-17T22:32:07.051Z

Updated: 2025-11-18T16:36:42.638Z

Reserved: 2025-11-17T14:12:06.794Z

Link: CVE-2025-13304

Vulnrichment

Updated: 2025-11-18T14:25:53.079Z

NVD

Status : Analyzed

Published: 2025-11-17T23:15:48.357

Modified: 2025-12-08T14:12:02.110

Link: CVE-2025-13304

Redhat

No data.

OpenCVE Enrichment

Updated: 2025-11-18T09:05:45Z

Weaknesses

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Exploitation poc

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object