CVE-2026-7068
Received Received - Intake
Buffer Overflow in D-Link DIR-825 nmbd Allows Local Exploit

Publication date: 2026-04-27

Last updated on: 2026-04-30

Assigner: VulDB

Description
A vulnerability was identified in D-Link DIR-825 3.00b32. This affects the function NMBD_process of the file sserver.c of the component nmbd. Such manipulation leads to buffer overflow. The attack can only be initiated within the local network. The exploit is publicly available and might be used. This vulnerability only affects products that are no longer supported by the maintainer.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-27
Last Modified
2026-04-30
Generated
2026-06-16
AI Q&A
2026-04-27
EPSS Evaluated
2026-06-15
NVD
CVE-2026-7068
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
dlink dir-825_firmware 3.00b32
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-119 The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
CWE-120 The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the D-Link DIR-825 router, specifically in the NMBD_process function within the sserver.c file of the nmbd component. It is a buffer overflow vulnerability that can be triggered by manipulating this function.

The attack can only be initiated from within the local network, meaning an attacker must have local network access to exploit it.

The exploit for this vulnerability is publicly available, which increases the risk of it being used.

Additionally, this vulnerability affects only products that are no longer supported by the maintainer.

Impact Analysis

Exploitation of this vulnerability can lead to a buffer overflow, which may allow an attacker to execute arbitrary code or cause a denial of service on the affected device.

Since the attack requires local network access, an attacker would need to be connected to the same network as the vulnerable device.

Successful exploitation could compromise the security and stability of the affected router, potentially impacting the entire local network.

Because the product is no longer supported, there may be no official patches or fixes available, increasing the risk.

Mitigation Strategies

The vulnerability affects D-Link DIR-825 3.00b32 and can only be exploited within the local network. Since the affected products are no longer supported by the maintainer, immediate mitigation steps include restricting local network access to the device and isolating it from untrusted users or devices.

Additionally, monitoring network traffic for suspicious activity related to the nmbd component and avoiding exposure of the device to potentially malicious local users can help reduce risk.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-7068. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart