PT-2025-14112 · D Link · D-Link Di-8100
Published
2025-02-18
·
Updated
2025-04-15
·
CVE-2025-28395
CVSS v2.0
9.0
High
| Vector | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
D-LINK DI-8100 version 16.07.26A1
Description
The issue is related to a Buffer Overflow in the
ipsec road asp function, which can be exploited via the host ip parameter.Recommendations
For D-LINK DI-8100 version 16.07.26A1, as a temporary workaround, consider restricting access to the
ipsec road asp function until a patch is available. Avoid using the host ip parameter in the affected function to minimize the risk of exploitation.Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
D-Link Di-8100