CVE-2025-13305

moderate-risk
Published 2025-11-17

A weakness has been identified in D-Link DWR-M920, DWR-M921, DWR-M960, DIR-822K and DIR-825M 1.01.07. This issue affects some unknown processing of the file /boafrm/formTracerouteDiagnosticRun. Executing manipulation of the argument host can lead to buffer overflow. The attack may be launched remotely. The exploit has been made available to the public and could be exploited.

Do I need to act?

-
0.23% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.8/10 High
NETWORK / LOW complexity

Affected Products (5)

Dir-825M Firmware
Dwr-M920 Firmware
Dwr-M921 Firmware
Dwr-M961 Firmware

Affected Vendors

Dlink

References (10)

Exploit https://github.com/LX-LX88/cve/issues/12
Permissions Required https://vuldb.com/?ctiid.332645
Third Party Advisory https://vuldb.com/?id.332645
Third Party Advisory https://vuldb.com/?submit.691809
Third Party Advisory https://vuldb.com/?submit.691816
Third Party Advisory https://vuldb.com/?submit.693784
Third Party Advisory https://vuldb.com/?submit.693806
Third Party Advisory https://vuldb.com/?submit.695424
Product https://www.dlink.com/
Exploit https://github.com/LX-LX88/cve/issues/12
43
/ 100
moderate-risk
Severity 30/34 · Critical
Exploitability 1/34 · Minimal
Exposure 12/34 · Low