CVE-2025-7911
Critical Remote Stack-Based Buffer Overflow in D-Link DI-8100 jhttpd
Description
Description
A vulnerability classified as critical was found in D-Link DI-8100 1.0. This vulnerability affects the function sprintf of the file /upnp_ctrl.asp of the component jhttpd. The manipulation of the argument remove_ext_proto/remove_ext_port leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Affected Vendors & Products
| Vendor | Product | Version |
|---|---|---|
| d-link | di-8100 | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-119 | Improper Restriction of Operations within the Bounds of a Memory Buffer |
| CWE-121 | Stack-based Buffer Overflow |
AI Powered Q&A
Can you explain this vulnerability to me?
How can this vulnerability impact me? :
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
Meta Information
CVE Publication Date:
2025-07-20
CVE Last Modified Date:
2025-07-21
Report Generation Date:
2025-07-31
AI Powered Q&A Generation:
2025-07-21
EPSS Last Evaluated Date:
2025-07-22
NVD Report Link: