Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
4DescriptionCVE.org
A vulnerability was detected in D-Link DIR-816 1.10CNB05. Affected by this vulnerability is an unknown functionality of the file /goform/form2Wl5BasicSetup.cgi of the component goahead. Performing a manipulation of the argument pskValue results in stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit is now public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
AnalysisAI
Critical stack-based buffer overflow vulnerability in the D-Link DIR-816 router (version 1.10CNB05) that allows remote attackers to execute arbitrary code without authentication. A public proof-of-concept exploit is available on GitHub, making this vulnerability actively exploitable. However, D-Link no longer supports this product, meaning no patch will be released.
Technical ContextAI
The vulnerability exists in the goahead web server component, specifically in the /goform/form2Wl5BasicSetup.cgi file that handles wireless configuration settings. The flaw (CWE-121: Stack-based Buffer Overflow) occurs when the 'pskValue' parameter is processed without proper bounds checking, allowing an attacker to overflow the stack buffer. Based on the CPE string (cpe:2.3:a:d-link:dir-816:*:*:*:*:*:*:*:*), all versions of the DIR-816 firmware may be affected, though only version 1.10CNB05 has been confirmed vulnerable.
RemediationAI
Since D-Link no longer supports the DIR-816 router, no official patch will be released. Organizations must immediately replace these devices with supported alternatives. As temporary mitigations: (1) Disable remote management if enabled, (2) Restrict access to the web interface using firewall rules to trusted IP addresses only, (3) Monitor for suspicious traffic to /goform/form2Wl5BasicSetup.cgi. The vendor's general security information can be found at https://www.dlink.com/, but no specific advisory exists for this EOL product.
Critical stack-based buffer overflow vulnerability in D-Link DIR-816 router firmware version 1.10CNB05, affecting the wi
Critical stack-based buffer overflow vulnerability in the D-Link DIR-816 router (version 1.10CNB05) that allows remote a
Same weakness CWE-121 – Stack-based Buffer Overflow
View allSame technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-12239