CVE-2026-10270
Analyzed Analyzed - Analysis Complete
Stack-Based Buffer Overflow in D-Link DI-7001 MINI

Publication date: 2026-06-01

Last updated on: 2026-06-03

Assigner: VulDB

Description
A vulnerability was detected in D-Link DI-7001 MINI up to 19.09.19A1. Impacted is the function sprintf of the file /httpd_debug.asp of the component API. The manipulation of the argument Time results in stack-based buffer overflow. The attack may be performed from remote. The exploit is now public and may be used.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-01
Last Modified
2026-06-03
Generated
2026-06-22
AI Q&A
2026-06-01
EPSS Evaluated
2026-06-20
NVD
CVE-2026-10270
EUVD
EUVD-2026-33693
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
dlink di-7001mini-8g_firmware 19.09.19a1
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-119 The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
CWE-121 A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Impact Analysis

Exploitation of this vulnerability can lead to a denial of service (DoS), causing the device to crash or become unresponsive.

In some cases, it may allow an attacker to execute arbitrary commands on the device, potentially leading to full compromise.

Executive Summary

This vulnerability is a stack-based buffer overflow in the D-Link DI-7001 MINI device, specifically in the sprintf function within the /httpd_debug.asp file of the device's API component.

The issue arises because the 'time' argument is not properly validated before being used in sprintf, allowing an attacker to send a specially crafted, excessively long input that overflows the buffer.

This overflow can be triggered remotely via HTTP POST requests to the httpd_debug.asp endpoint.

Detection Guidance

This vulnerability can be detected by monitoring HTTP POST requests to the /httpd_debug.asp endpoint on the D-Link DI-7001 MINI device. Specifically, look for requests containing an excessively long or malformed 'time' parameter, which may indicate an attempt to exploit the buffer overflow.

A practical approach is to capture network traffic and filter for POST requests targeting /httpd_debug.asp with suspiciously large 'time' parameter values.

  • Use tcpdump or Wireshark to capture and analyze traffic: tcpdump -i <interface> -A -s 0 'tcp port 80 and (((ip[2:2] - ((ip[0]&0xf)<<2)) - ((tcp[12]&0xf0)>>2)) != 0)'
  • Use grep or similar tools on web server logs to find POST requests to /httpd_debug.asp with 'time' parameters exceeding normal length.
  • Example command to search logs: grep 'POST /httpd_debug.asp' /var/log/httpd/access.log | grep 'time='
Mitigation Strategies

Immediate mitigation steps include restricting access to the vulnerable endpoint /httpd_debug.asp to trusted networks only, such as by using firewall rules or access control lists.

Additionally, monitor and block suspicious HTTP POST requests with unusually long 'time' parameters to prevent exploitation attempts.

If possible, update the device firmware to a version later than 19.09.19A1 where the vulnerability is fixed.

Until a patch is applied, consider disabling the debug interface or the vulnerable API endpoint if the device configuration allows.

Compliance Impact

The vulnerability in the D-Link DI-7001 MINI device allows remote attackers to cause a stack-based buffer overflow, potentially leading to denial of service or arbitrary command execution.

Such security flaws can impact compliance with standards like GDPR and HIPAA because they may lead to unauthorized access, data breaches, or service disruptions, which violate requirements for data protection, integrity, and availability.

However, the provided information does not explicitly detail the direct effects on compliance with these regulations.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-10270. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart