216.73.216.75

CVE-2026-5815

· Published 09/04/2026 02:16 · Modified 15/07/2026 16:35 · Author: The MITRE Corporation

Labels: CVE-2026-5815 2026-04-09CVE-2026-5815CWE-119[email protected]

Essential information

Published
09/04/2026 02:16
Modified
15/07/2026 16:35
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
9.0 (v2) 8.8 HIGH (v3.1) 7.4 HIGH (v4.0)
CISA KEV
No
CWE
CWE-119
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

A vulnerability was detected in D-Link DIR-645 1.01/1.02/1.03. Impacted is the function hedwigcgi_main of the file /cgi-bin/hedwig.cgi. The manipulation results in stack-based buffer overflow. The attack can be launched remotely. The exploit is now public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
d-link / dir-645 cpe:2.3:a:d-link:dir-645:1.01-*:*:*:*:*:*:*
d-link / dir-645 cpe:2.3:a:d-link:dir-645:1.02-*:*:*:*:*:*:*
d-link / dir-645 cpe:2.3:a:d-link:dir-645:1.03-*:*:*:*:*:*:*

References