- Description
- A vulnerability was found in D-Link DIR-816 1.10CNB05. It has been classified as critical. This affects the function qosClassifier of the file /goform/qosClassifier. The manipulation of the argument dip_address/sip_address leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
- Source
- cna@vuldb.com
- NVD status
- Analyzed
- CNA Tags
- unsupported-when-assigned
CVSS 4.0
- Type
- Secondary
- Base score
- 9.3
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- CRITICAL
CVSS 3.1
- Type
- Secondary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
CVSS 2.0
- Type
- Secondary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
- Hype score
- Not currently trending
⚠️Múltiples vulnerabilidades en D-Link DIR-816 ❗CVE-2025-5622 ❗CVE-2025-5623 ❗CVE-2025-5624 ➡️Más info: https://t.co/CA3qOiTAUw https://t.co/URBg6NzLRr
@CERTpy
9 Jul 2025
88 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
⚠️⚠️Critical vulnerabilities have been discovered in the D-Link DIR-816 router: CVE-2025-5622 (CVSS 9.8): Stack overflow via apcli_mode_5g, apcli_enc_5g, or apcli_default_key_5g parameters. CVE-2025-5623 (CVSS 9.8): Stack overflow in /goform/qosClassifier via https://t.
@fofabot
1 Jul 2025
1455 Impressions
8 Retweets
18 Likes
9 Bookmarks
0 Replies
0 Quotes
CVE-2025-5623 Stack-Based Buffer Overflow in D-Link DIR-816 1.10CNB05 vi... https://t.co/NrNKr2yUFn Don't wait vulnerability scanning results: https://t.co/oh1APvMMnd
@VulmonFeeds
5 Jun 2025
84 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-5623 A vulnerability was found in D-Link DIR-816 1.10CNB05. It has been classified as critical. This affects the function qosClassifier of the file /goform/qosClassifier. Th… https://t.co/aSA3SADHX5
@CVEnew
5 Jun 2025
528 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-5623: CRITICAL] Critical vulnerability found in D-Link DIR-816 1.10CNB05! Exploit allows remote attackers to trigger a stack-based buffer overflow via qosClassifier function. Products no longer suppo...#cve,CVE-2025-5623,#cybersecurity https://t.co/cdunO1F3Fo https://t.
@CveFindCom
5 Jun 2025
50 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:dlink:dir-816_firmware:1.10cnb05:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6A221E99-E2B0-4C57-9263-9A86EFF8746E"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:dlink:dir-816:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "B54058C1-B58F-434A-ABF0-A6B314A1AB14"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]