CVE-2025-11338

High CVSS: 7.4

A flaw has been found in D-Link DI-7100G C1 up to 20250928. This vulnerability affects the function sub_4C0990 of the file /webchat/login.cgi of the component jhttpd. Executing manipulation of the argument openid can lead to buffer overflow. It is possible to launch the attack remotely. The exploit has been published and may be used.

Vendor

Dlink

Product

Di-7100g C1 Firmware

CWE

CWE-119

Yayın Tarihi

2025-10-06 16:15:33

Güncelleme

2025-11-19 21:48:49

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-119 Di-7100g C1 Firmware HIGH Dlink 2025

Referanslar

https://vuldb.com/?ctiid.327221 https://vuldb.com/?id.327221 https://vuldb.com/?submit.664619 https://www.dlink.com/ https://www.yuque.com/jh0ng/vmpda6/kggo2ngrcphzvwml

Benzer Kayıtlar

Medium

CVE-2026-5312

A weakness has been identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…

Medium

CVE-2026-5311

A security flaw has been discovered in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-32…

High

CVE-2026-5214

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-32…

Medium

CVE-2026-5215

A vulnerability was identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…

High

CVE-2026-5213

A vulnerability was determined in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…

High

CVE-2026-5212

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…