CVE-2025-7908

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions D-Link DI-8100 version 1.0

Description A critical issue exists in the D-Link DI-8100 device. The sprintf function within the /ddns.asp?opt=add file, part of the jhttpd component, is susceptible to a stack-based buffer overflow. Manipulation of the mx argument can trigger this issue, allowing for remote exploitation. The exploit has been publicly disclosed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Stack Overflow

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-121CWE-119

Related Identifiers

BDU:2025-08943

CVE-2025-7908

Affected Products

Di-8100

CVE-2025-7908

Weakness Enumeration

Related Identifiers

Affected Products

References · 14