What is the CVSS score of CVE-2025-50652?

CVE-2025-50652 has a CVSS 3.1 base score of 7.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. EPSS exploitation probability: 0.0%.

Which versions of D-Link are affected by CVE-2025-50652?

D-Link DI-8003 routers running firmware 16.07.26A1 are vulnerable to unauthenticated denial-of-service attacks through a network-accessible administrative interface, potentially disrupting network…

How to fix or mitigate CVE-2025-50652?

Within 24 hours: Identify all D-Link DI-8003 routers in your environment and verify current firmware version (check for 16.07.26A1). Within 7 days: Contact D-Link support to determine firmware availability status and timeline; restrict administrative interface access (/saveparm_usb.asp) to trusted administrative networks only via firewall rules. Within 30 days: Apply any released firmware updates when available; if no patch is released, implement network segmentation to isolate affected devices from untrusted network segments.

D-Link CVE-2025-50652

EUVD-2025-209333 HIGH

Classic Buffer Overflow (CWE-120)

2026-04-08 mitre

GHSA-65xw-5c62-72j7

Buffer Overflow D-Link

7.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

Re-analysis Queued

Apr 22, 2026 - 16:22 vuln.today

cvss_changed

EUVD ID Assigned

Apr 08, 2026 - 19:31 euvd

EUVD-2025-209333

Analysis Generated

Apr 08, 2026 - 19:31 vuln.today

CVE Published

Apr 08, 2026 - 00:00 nvd

HIGH 7.5

DescriptionNVD

An issue in D-Link DI-8003 16.07.26A1 related to improper handling of the id parameter in the /saveparm_usb.asp endpoint.

AnalysisAI

Buffer overflow in D-Link DI-8003 router firmware 16.07.26A1 enables unauthenticated remote attackers to trigger denial-of-service conditions through malformed id parameter input to /saveparm_usb.asp endpoint. Exploitation requires network access to administrative interface without authentication. CWE-120 classification indicates classic buffer overflow allowing memory corruption. CVSS vector confirms network-exploitable, unauthenticated attack path with high availability impact but no data confidentiality or integrity compromise. No public exploit identified at time of analysis.

Technical ContextAI

CWE-120 buffer overflow stems from insufficient input validation on id parameter at /saveparm_usb.asp. Unbounded memory copy operation allows oversized inputs to corrupt stack/heap memory structures, crashing routing processes. CVSS complexity rating (AC:L) indicates trivial exploitation requiring only HTTP parameter manipulation without timing or race conditions.

RemediationAI

No vendor-released patch identified at time of analysis. D-Link security bulletin (https://www.dlink.com/en/security-bulletin/) should be monitored for firmware updates addressing CVE-2025-50652. Immediate mitigations: restrict administrative interface access to trusted management networks using firewall rules, disable external WAN-side access to web management ports (typically TCP 80/443), implement network segmentation isolating DI-8003 devices from untrusted networks. If device supports it, disable USB configuration functionality at /saveparm_usb.asp if not operationally required. Organizations unable to implement network controls should consider device replacement with patched alternative until D-Link releases firmware fix. Validate vendor advisory for product end-of-life status impacting patch availability.