CVE-2025-44084

Name of the Vulnerable Software and Affected Versions D-link DI-8100 version 16.07.26A1

Description The issue allows an attacker to exploit a Command Injection flaw by crafting specific HTTP requests. This triggers the command execution flaw and can provide the attacker with the highest privilege shell access to the firmware system.

Recommendations For D-link DI-8100 version 16.07.26A1, consider restricting access to the HTTP request handling mechanism until a patch is available. As a temporary workaround, avoid using the vulnerable firmware version and wait for an official update from the manufacturer. At the moment, there is no information about a newer version that contains a fix for this vulnerability.