CVE-2025-7911

High CVSS: 7.4

A vulnerability classified as critical was found in D-Link DI-8100 1.0. This vulnerability affects the function sprintf of the file /upnp_ctrl.asp of the component jhttpd. The manipulation of the argument remove_ext_proto/remove_ext_port leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Vendor

Dlink

Product

Di-8100 Firmware

CWE

CWE-119

Yayın Tarihi

2025-07-20 23:15:31

Güncelleme

2025-08-08 16:20:45

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-119 Di-8100 Firmware HIGH Dlink 2025

Referanslar

https://github.com/buobo/bo-s-CVE/blob/main/DI-8100/upnp_ctrl_asp.md https://vuldb.com/?ctiid.317026 https://vuldb.com/?id.317026 https://vuldb.com/?submit.618640 https://vuldb.com/?submit.618641 https://www.dlink.com/ https://github.com/buobo/bo-s-CVE/blob/main/DI-8100/upnp_ctrl_asp.md

Benzer Kayıtlar

Medium

CVE-2026-5312

A weakness has been identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…

Medium

CVE-2026-5311

A security flaw has been discovered in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-32…

High

CVE-2026-5214

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-32…

Medium

CVE-2026-5215

A vulnerability was identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…

High

CVE-2026-5213

A vulnerability was determined in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…

High

CVE-2026-5212

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…