What is the CVSS score of CVE-2025-50647?

CVE-2025-50647 has a CVSS 3.1 base score of 7.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. EPSS exploitation probability: 0.0%.

Which versions of D-Link are affected by CVE-2025-50647?

A buffer overflow vulnerability in D-Link DI-8003 router firmware 16.07.26A1 allows unauthenticated attackers to remotely crash network devices through the Quality-of-Service configuration endpoint,…

How to fix or mitigate CVE-2025-50647?

Within 24 hours: Identify and inventory all D-Link DI-8003 devices running firmware 16.07.26A1 in production environments; disable or restrict remote access to the qos.asp endpoint via firewall rules if operationally feasible. Within 7 days: Isolate affected devices to management networks only; contact D-Link support for firmware update timeline and interim guidance; document current firmware versions across all instances. Within 30 days: Test and deploy any available firmware updates from D-Link (monitor vendor security advisories for release); implement network segmentation to limit direct access to QoS configuration interfaces from untrusted networks.

D-Link CVE-2025-50647

EUVD-2025-209327 HIGH

Classic Buffer Overflow (CWE-120)

2026-04-08 mitre

GHSA-52cq-r388-m853

Buffer Overflow D-Link

7.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

Re-analysis Queued

Apr 22, 2026 - 16:22 vuln.today

cvss_changed

EUVD ID Assigned

Apr 08, 2026 - 19:31 euvd

EUVD-2025-209327

Analysis Generated

Apr 08, 2026 - 19:31 vuln.today

CVE Published

Apr 08, 2026 - 00:00 nvd

HIGH 7.5

DescriptionNVD

A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1, specifically in the handling of the wans parameter in the qos.asp endpoint.

AnalysisAI

Buffer overflow in D-Link DI-8003 router firmware 16.07.26A1 enables unauthenticated remote attackers to trigger denial-of-service conditions through malformed wans parameter input to the qos.asp Quality-of-Service configuration endpoint. Exploitation requires no user interaction and achieves complete availability impact against network infrastructure device. Low observed exploitation activity (EPSS 0.02%, 5th percentile); no public exploit identified at time of analysis.

Technical ContextAI

Classic stack-based buffer overflow (CWE-120) in web management interface parameter parsing. The qos.asp endpoint fails to validate wans parameter length before copying into fixed-size buffer, enabling memory corruption. Network-accessible attack vector with low complexity indicates vulnerability in HTTP request processing logic without boundary checks on user-controlled Quality-of-Service configuration input.

RemediationAI

No vendor-released patch identified at time of analysis. D-Link has not published firmware updates addressing CVE-2025-50647 for the DI-8003 model. Organizations operating affected devices should implement compensating controls: restrict web management interface access to trusted administrative networks only using firewall rules, disable remote management features if not operationally required, deploy intrusion prevention systems with signatures detecting abnormal HTTP parameter lengths targeting qos.asp, and monitor D-Link security bulletin portal for forthcoming patches. Consider hardware replacement if vendor discontinues support for this model. Consult official D-Link advisory: https://www.dlink.com/en/security-bulletin/