Which versions of D-Link are affected by EUVD-2026-14329?

A critical remote code execution vulnerability affecting D-Link DIR-513 routers allows authenticated attackers to gain complete system control.

Is there a public PoC exploit available for EUVD-2026-14329?

Yes, a public proof-of-concept exploit is available for EUVD-2026-14329. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate EUVD-2026-14329?

Within 24 hours: Inventory all DIR-513 devices in production and assess business criticality. Within 7 days: Isolate or replace affected routers; if retention is necessary, implement network segmentation and access controls. Within 30 days: Complete migration to supported router models with active security updates.

D-Link EUVD-2026-14329

Q: What is the CVSS score of EUVD-2026-14329?

EUVD-2026-14329 has a CVSS 4.0 base score of 7.4 (High). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

| CVE-2026-4555 HIGH

Stack-based Buffer Overflow (CWE-121)

2026-03-22 VulDB

GHSA-fwg7-xgp7-84j9

D-Link Buffer Overflow Stack Overflow

7.4

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

7.4 HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Lifecycle Timeline

PoC Detected

Apr 03, 2026 - 19:31 vuln.today

Public exploit code

EUVD ID Assigned

Mar 22, 2026 - 17:00 euvd

EUVD-2026-14329

Analysis Generated

Mar 22, 2026 - 17:00 vuln.today

CVE Published

Mar 22, 2026 - 16:51 nvd

HIGH 7.4

DescriptionCVE.org

A weakness has been identified in D-Link DIR-513 1.10. The impacted element is the function formEasySetTimezone of the file /goform/formEasySetTimezone of the component boa. This manipulation of the argument curTime causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks. This vulnerability only affects products that are no longer supported by the maintainer.

AnalysisAI

Remote code execution in D-Link DIR-513 1.10 through stack-based buffer overflow in the /goform/formEasySetTimezone endpoint allows authenticated attackers to achieve full system compromise. Public exploit code exists for this vulnerability, and affected devices are no longer receiving security updates from the vendor. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Authenticate to D-Link DIR-513 web interface

Exploit

Send crafted request to /goform/formEasySetTimezone

Execution

Overflow curTime parameter in formEasySetTimezone function

Impact

Overwrite stack memory and execute arbitrary code

Access

Authenticate to D-Link DIR-513 web interface

Exploit

Send crafted request to /goform/formEasySetTimezone

Execution

Overflow curTime parameter in formEasySetTimezone function

Impact

Overwrite stack memory and execute arbitrary code

Vulnerability AssessmentAI

Exploitation	D-Link DIR-513 firmware version 1.10 (end-of-life product). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	This vulnerability presents a critical real-world risk despite requiring low-privilege authentication (PR:L). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An attacker identifies a D-Link DIR-513 device exposed on the network through port scanning or Shodan searches. After obtaining or guessing low-privilege credentials (potentially using default credentials like admin/admin common on legacy devices), the attacker authenticates to the web interface and sends a specially crafted POST request to /goform/formEasySetTimezone with an oversized 'curTime' parameter containing shellcode. …
Remediation	Since the D-Link DIR-513 is an end-of-life product with no vendor support or available patches, the primary remediation is immediate device replacement with a currently supported router model from D-Link or another vendor. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all DIR-513 devices in production and assess business criticality. …

Threat intelligence, references, and detailed analysis are available after sign-in.

More from same product – last 7 days

CVE-2026-12174 HIGH This Week POC

7.4 Jun 13

Format string vulnerability in the D-Link DCS-935L 1.10.01 IP camera allows authenticated remote attackers to corrupt me

EUVD-2026-14329 vulnerability details – vuln.today

Back