CVE-2025-8175

A vulnerability was found in D-Link DI-8400 16.07.26A1. It has been classified as problematic. This affects an unknown part of the file usbpaswd.asp of the component jhttpd. The manipulation of the argument shareenable leads to null pointer dereference. It is possible to initiate the attack...

CVE-2025-8175

CVE-2025-8175 affects D-Link DI-8400, version 16.07.26A1, where the jhttpd component’s usb_paswd.asp contains a vulnerable handling path for the parameter share_enable . Manipulating this argument triggers a null pointer dereference, enabling a remote attack and potentially causing a service cras...

PT-2025-30946 · D Link · D-Link Di-8400

Name of the Vulnerable Software and Affected Versions: D-Link DI-8400 version 16.07.26A1 Description: A vulnerability exists in the jhttpd component of the software. The manipulation of the share enable argument in the usb paswd.asp file leads to a null pointer dereference. This issue can be...

The vulnerability of the upnp_ctrl_asp() function in the JHTTPD web server of the D-Link DI-8100 router’s microprogramming software allows a intruder to trigger a service failure.

The vulnerability of the upnpctrlasp function in the JHTTPD web server of the D-Link DI-8100 microprogrammed router software is related to the execution of operations outside the buffer in memory when processing the removeextproto and removeextport parameters. Exploitation of this vulnerability...

D-Link DI-8100 Buffer Overflow Vulnerability

The D-Link DI-8100 is an enterprise-class router from D-Link. A buffer overflow vulnerability exists in the D-Link DI-8100 version 1.0, which originates from an insufficient checksum of parameter mx in the sprintf function in the /ddns.asp?opt=add file of component jhttpd. The vulnerability can b...

CVE-2025-7908

A vulnerability was found in D-Link DI-8100 1.0. It has been declared as critical. Affected by this vulnerability is the function sprintf of the file /ddns.asp?opt=add of the component jhttpd. The manipulation of the argument mx leads to stack-based buffer overflow. The attack can be launched...

CVE-2025-7911

A vulnerability classified as critical was found in D-Link DI-8100 1.0. This vulnerability affects the function sprintf of the file /upnpctrl.asp of the component jhttpd. The manipulation of the argument removeextproto/removeextport leads to stack-based buffer overflow. The attack can be initiate...

CVE-2025-7911

D-Link DI-8100 1.0 is affected by a stack-based buffer overflow in the jhttpd component (sprintf in /upnp_ctrl.asp). The issue results from improper handling of the remove_ext_proto/remove_ext_port parameters, enabling remote exploitation. Public exploits have been disclosed. No patch/version inf...

CVE-2025-7911 D-Link DI-8100 jhttpd upnp_ctrl.asp sprintf stack-based overflow

A vulnerability classified as critical was found in D-Link DI-8100 1.0. This vulnerability affects the function sprintf of the file /upnpctrl.asp of the component jhttpd. The manipulation of the argument removeextproto/removeextport leads to stack-based buffer overflow. The attack can be initiate...

CVE-2025-7911 D-Link DI-8100 jhttpd upnp_ctrl.asp sprintf stack-based overflow

A vulnerability classified as critical was found in D-Link DI-8100 1.0. This vulnerability affects the function sprintf of the file /upnpctrl.asp of the component jhttpd. The manipulation of the argument removeextproto/removeextport leads to stack-based buffer overflow. The attack can be initiate...

CVE-2025-7908 D-Link DI-8100 jhttpd ddns.asp sprintf stack-based overflow

A vulnerability was found in D-Link DI-8100 1.0. It has been declared as critical. Affected by this vulnerability is the function sprintf of the file /ddns.asp?opt=add of the component jhttpd. The manipulation of the argument mx leads to stack-based buffer overflow. The attack can be launched...

CVE-2025-7908

CVE-2025-7908 affects D-Link DI-8100 v1.0 (jhttpd) with a stack-based overflow in sprintf() for /ddns.asp?opt=add via the mx argument. Exploitation is remote and payloads have been disclosed; CVSS indicates HIGH risk. There is no publicly available fix version information in the provided document...

CVE-2025-7908 D-Link DI-8100 jhttpd ddns.asp sprintf stack-based overflow

A vulnerability was found in D-Link DI-8100 1.0. It has been declared as critical. Affected by this vulnerability is the function sprintf of the file /ddns.asp?opt=add of the component jhttpd. The manipulation of the argument mx leads to stack-based buffer overflow. The attack can be launched...

D-Link DI-8100 安全漏洞

The D-Link DI-8100 is an enterprise-class router from D-Link. A buffer overflow vulnerability exists in the D-Link DI-8100 version 1.0, which originates from an insufficient checksum of parameter mx in the sprintf function in the /ddns.asp?opt=add file of component jhttpd. The vulnerability can b...

D-Link DI-8100 安全漏洞

The D-Link DI-8100 is an enterprise-class router device from D-Link. A buffer overflow vulnerability exists in the D-Link DI-8100 version 1.0, which originates from the improper handling of the parameters removeextproto/removeextport by the sprintf function in the /upnpctrl.asp file of the...

PT-2025-30223 · D Link · Di-8100 +1

Name of the Vulnerable Software and Affected Versions: D-Link DI-8100 version 1.0 Description: A critical vulnerability exists in the sprintf function within the jhttpd component of D-Link DI-8100 version 1.0. Manipulation of the remove ext proto/remove ext port argument in the /upnp ctrl.asp fil...

PT-2025-30219 · D Link · Di-8100

Name of the Vulnerable Software and Affected Versions: D-Link DI-8100 version 1.0 Description: A critical issue exists in the D-Link DI-8100 device. The sprintf function within the /ddns.asp?opt=add file, part of the jhttpd component, is susceptible to a stack-based buffer overflow. Manipulation ...

D-Link DI-500WF Buffer Overflow Vulnerability

D-Link DI-500WF is a panel type wireless AP access point, designed with international wireless standards, supporting 2.4GHz band, wireless transmission speed up to 300Mbps, in line with the green concept. A buffer overflow vulnerability exists in the D-Link DI-500WF. The vulnerability stems from...

CVE-2025-7194

A vulnerability was found in D-Link DI-500WF 17.04.10A1T. It has been declared as critical. Affected by this vulnerability is the function sprintf of the file ipposition.asp of the component jhttpd. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be launch...

CVE-2025-7194

CVE-2025-7194 affects D-Link DI-500WF (version 17.04.10A1T). The vulnerability resides in the jhttpd component’s file ip_position.asp where unvalidated input to the sprintf call leads to a stack-based buffer overflow. It is exploitable remotely over the network and an exploit has been publicly di...