CVE-2025-10779

Published: Sep 22, 2025Modified: Sep 25, 2025

7.4

Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Show more

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less

Source: CNA (Secondary)

Description

A vulnerability was found in D-Link DCS-935L up to 1.13.01. The impacted element is the function sub_402280 of the file /HNAP1/. The manipulation of the argument HNAP_AUTH/SOAPAction results in stack-based buffer overflow. The attack may be launched remotely. The exploit has been made public and could be used. This vulnerability only affects products that are no longer supported by the maintainer.

Affected (1)

Products: Dlink: Dcs 935l Firmware

1 product

Dcs 935l Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dcs 935l Firmware	Up to 1.13.01

Running on/with	Platform Versions
Dlink Dcs 935l	All versions

Related CWEs

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (9)

https://github.com/scanleale/IOT_sec/blob/main/DCS-935L-1.pdf

Source: cna@vuldb.com

ExploitThird Party Advisory

https://github.com/scanleale/IOT_sec/blob/main/DCS-935L-2.pdf

Source: cna@vuldb.com

ExploitThird Party Advisory

https://vuldb.com/?ctiid.325135

Source: cna@vuldb.com

Permissions RequiredVDB Entry

https://vuldb.com/?id.325135

Source: cna@vuldb.com

Third Party AdvisoryVDB Entry

https://vuldb.com/?submit.653690

Source: cna@vuldb.com

Third Party AdvisoryVDB Entry

https://vuldb.com/?submit.653691

Source: cna@vuldb.com

Third Party AdvisoryVDB Entry

https://www.dlink.com/

Source: cna@vuldb.com

Product

https://github.com/scanleale/IOT_sec/blob/main/DCS-935L-1.pdf

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

ExploitThird Party Advisory

https://github.com/scanleale/IOT_sec/blob/main/DCS-935L-2.pdf

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

ExploitThird Party Advisory

Timeline

No history available yet.