What is the CVSS score of CVE-2025-50661?

CVE-2025-50661 has a CVSS 3.1 base score of 7.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. EPSS exploitation probability: 0.0%.

Which versions of D-Link are affected by CVE-2025-50661?

D-Link DI-8003 routers running firmware 16.07.26A1 contain a remotely exploitable buffer overflow in the web management interface that allows attackers to crash the device and disrupt network…

How to fix or mitigate CVE-2025-50661?

Within 24 hours: Identify all D-Link DI-8003 devices running firmware 16.07.26A1 in your network using asset inventory or SNMP scanning; isolate affected routers to a restricted management network if possible. Within 7 days: Contact D-Link support to confirm firmware update availability and test any released patches in a non-production environment; implement network access controls limiting HTTP access to the /url_rule.asp endpoint to authorized management systems only. Within 30 days: Deploy vendor patch or firmware update when available; if no patch released, evaluate replacement with a device on active security support and consider implementing a Web Application Firewall rule to filter malformed HTTP requests to the vulnerable endpoint.

D-Link CVE-2025-50661

EUVD-2025-209345 HIGH

Stack-based Buffer Overflow (CWE-121)

2026-04-08 mitre

GHSA-g4cp-69rc-xxc2

Buffer Overflow D-Link Stack Overflow

7.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

Re-analysis Queued

Apr 22, 2026 - 16:22 vuln.today

cvss_changed

EUVD ID Assigned

Apr 08, 2026 - 19:31 euvd

EUVD-2025-209345

Analysis Generated

Apr 08, 2026 - 19:31 vuln.today

CVE Published

Apr 08, 2026 - 00:00 nvd

HIGH 7.5

DescriptionNVD

A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of multiple parameters in the /url_rule.asp endpoint. An attacker can exploit this vulnerability by sending a crafted HTTP GET request with parameters name, en, ips, u, time, act, rpri, and log.

AnalysisAI

Buffer overflow in D-Link DI-8003 router firmware 16.07.26A1 enables unauthenticated remote attackers to trigger denial-of-service conditions via crafted HTTP GET requests to the /url_rule.asp endpoint. Exploitation requires no user interaction and succeeds over network access with low complexity. Eight vulnerable parameters (name, en, ips, u, time, act, rpri, log) accept unbounded input causing stack memory corruption. CVSS 7.5 HIGH severity reflects network-accessible availability impact. No public exploit identified at time of analysis. EPSS 0.01% indicates low observed exploitation activity.

Technical ContextAI

CWE-121 stack-based buffer overflow stems from missing input validation on multiple GET parameters in /url_rule.asp CGI handler. Firmware version 16.07.26A1 fails to enforce length constraints before copying user-controlled data to fixed-size stack buffers, enabling memory corruption. CVSS vector AV:N/AC:L/PR:N confirms network-based unauthenticated attack surface.

RemediationAI

No vendor-released patch identified at time of analysis per D-Link security bulletin repository at https://www.dlink.com/en/security-bulletin/. Immediate mitigation: restrict administrative interface access to trusted management networks via firewall rules, disable WAN-side HTTP/HTTPS management, implement IP allowlisting for web console access. Organizations must monitor D-Link security bulletin for firmware updates addressing CVE-2025-50661. If extended vendor support unavailable, evaluate router replacement with actively maintained alternatives. Validate any future firmware releases against researcher disclosure at https://github.com/xiaotea/iot-vulnerability-collection/blob/main/README.md before deployment. Implement network segmentation isolating affected devices from untrusted zones.