What is CVE-2025-4452?

CVE-2025-4452 is a high-severity vulnerability in D-link Dir-619l, classified under Buffer Copy without Checking Size of Input (Classic Buffer Overflow). CVSS score: 8.8/10. Published 2025-05-09.

How severe is CVE-2025-4452?

High severity. CVSS v3 base score is 8.8 out of 10.

Buffer overflow in D-link Dir-619l

CVE-2025-4452

A vulnerability was found in D-Link DIR-619L 2.04B04 and classified as critical. Affected by this issue is the function formSetWizard2. The manipulation of the argument curTime leads to buffer overflow. The attack may be launched remotely…

Vulnerability class: Buffer Overflow

EPSS: 0.009 (76.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.8 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

D-link Dir-619l — versions 2.04B04

Weakness classification (CWE)

References

VDB-308066 | D-Link DIR-619L formSetWizard2 buffer overflow (vdb-entry, technical-description)
VDB-308066 | CTI Indicators (IOB, IOC, IOA) (signature, permissions-required)
Submit #560795 | D-Link DIR-619L 2.04B04 Buffer Overflow (third-party-advisory)
github.com/jylsec/vuldb/blob/main/D-Link/dlink_dir619l/Buffer_overflow-formSetW… (related)
www.dlink.com/ (product)

Frequently asked questions

What is CVE-2025-4452?: CVE-2025-4452 is a high-severity vulnerability in D-link Dir-619l, classified under Buffer Copy without Checking Size of Input (Classic Buffer Overflow). CVSS score: 8.8/10. Published 2025-05-09.
How severe is CVE-2025-4452?: High severity. CVSS v3 base score is 8.8 out of 10.