Title: D-Link DWR-M920 v1.1.50 Buffer Overflow Vulnerability Description: A critical buffer overflow vulnerability was found in the "/boafrm/formWl Encrypt" endpoint. Within the sub_451E10 function, the strcpy function is used to parse the "submit-url" parameter from an incoming request. Due to the lack of proper bounds checking, a malformed "submit-url" parameter can overwrite the program stack, leading to application crashes, memory corruption, and potentially allowing arbitrary code execution on the server. Source URL: https://github.com/QIU-DIE/CVE/issues/44 Submitter: LINXI666 (UID 91556) Submission Date: 11/14/2025 08:03 AM Moderated Date: 11/22/2025 04:12 PM Status: Duplicate VulDB Entry ID: 333319 [D-Link DIR-822K/DWR-M920 1.00_20250513164613/1.1.50 /boafrm/formWlEncrypt submit-url buffer overflow] Points: 0