Zero Day MonitorZDM

← Back to list

8.8

CVE-2026-5815

d-link · dir-645

D-Link DIR-645 hedwig.cgi hedwigcgi_main stack-based overflow

Description

A vulnerability was detected in D-Link DIR-645 1.01/1.02/1.03. Impacted is the function hedwigcgi_main of the file /cgi-bin/hedwig.cgi. The manipulation results in stack-based buffer overflow. The attack can be launched remotely. The exploit is now public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

Affected Products

Vendor	Product	Versions
d-link	dir-645	1.01, 1.02, 1.03

References

https://vuldb.com/vuln/356263(vdb-entry, technical-description)
https://vuldb.com/vuln/356263/cti(signature, permissions-required)
https://vuldb.com/submit/788298(third-party-advisory)
https://github.com/Pers1st0/CVE/blob/main/stack-based%20buffer%20overflow%20vulnerability%20exists%20in%20the%20hedwig.cgi%20of%20D-Link%20DIR-645.md(related)
https://github.com/Pers1st0/CVE/blob/main/stack-based%20buffer%20overflow%20vulnerability%20exists%20in%20the%20hedwig.cgi%20of%20D-Link%20DIR-645.md#poc(exploit)
https://www.dlink.com/(product)

Related News (1 articles)

Tier C

VulDB2d ago

CVE-2026-5815 | D-Link DIR-645 1.01/1.02/1.03 /cgi-bin/hedwig.cgi hedwigcgi_main stack-based overflow

→ No new info (linked only)

CVSS 3.18.8 HIGH

VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA KEV❌ No

Actively exploited❌ No

CWECWE-121, CWE-119

PublishedApr 8, 2026

Last enriched1d ago

Trending Score23

Source articles1

Independent1

Info Completeness0/14

Missing: cve_id, title, description, vendor, product, versions, cvss, epss, cwe, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

NONECVE-2026-5844

D-Link DIR-882 HNAP1 SetNetworkSettings prog.cgi sprintf os command injection

HIGHCVE-2025-45058

CVE-2025-45058: D-Link DI-8300 v16.07.26A1 was discovered to contain a buffer overflow via the fx parameter in the jingx_asp function. T

HIGHCVE-2025-45057

CVE-2025-45057: D-Link DI-8300 v16.07.26A1 was discovered to contain a buffer overflow via the ip parameter in the ip_position_asp funct

HIGHCVE-2025-45059

CVE-2025-45059: D-Link DI-8300 v16.07.26A1 was discovered to contain a buffer overflow via the fn parameter in the tgfile_htm function.

D-Link DIR-650IN - Authenticated Command Injection

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 8, 2026

Discovered by ZDM

Apr 8, 2026