CVE-2025-50652

Received Received - Intake

Improper Input Validation in D-Link DI-8003 USB Parameter Handling

Publication date: 2026-04-08

Last updated on: 2026-04-22

Assigner: MITRE

Description

An issue in D-Link DI-8003 16.07.26A1 related to improper handling of the id parameter in the /saveparm_usb.asp endpoint.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-04-08

Last Modified

2026-04-22

Generated

2026-05-07

AI Q&A

2026-04-08

EPSS Evaluated

2026-05-05

NVD

CVE-2025-50652

EUVD

EUVD-2025-209333

Affected Vendors & Products

Vendor	Product	Version / Range
dlink	di-8003_firmware	16.07.26a1

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-120	The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.

Attack-Flow Graph

AI Powered Q&A

Can you explain this vulnerability to me?

This vulnerability is an issue in the D-Link DI-8003 device, specifically version 16.07.26A1. It involves improper handling of the 'id' parameter in the /saveparm_usb.asp endpoint.

Ask Our AI Assistant

Need more information? Ask your question to get an AI reply (Powered by our expertise)

0/70

CVE-2025-50652

Improper Input Validation in D-Link DI-8003 USB Parameter Handling

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Powered Q&A

Ask Our AI Assistant

EPSS Chart