Skip to main content

Di 8100 Firmware CVE-2025-7603

| EUVDEUVD-2025-21344 HIGH
Buffer Overflow (CWE-119)
2025-07-14 cna@vuldb.com
7.2
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.2 HIGH
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
EUVD ID Assigned
Mar 16, 2026 - 09:43 euvd
EUVD-2025-21344
Analysis Generated
Mar 16, 2026 - 09:43 vuln.today
PoC Detected
Jul 16, 2025 - 14:32 vuln.today
Public exploit code
CVE Published
Jul 14, 2025 - 13:15 nvd
HIGH 7.2

DescriptionCVE.org

A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been classified as critical. Affected is an unknown function of the file /jingx.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

AnalysisAI

CVE-2025-7603 is a critical stack-based buffer overflow vulnerability in D-Link DI-8100 firmware version 16.07.26A1, affecting the HTTP Request Handler component (/jingx.asp file). An authenticated remote attacker with high privileges can exploit this vulnerability to achieve complete compromise of the device, including code execution, data theft, and denial of service. A public proof-of-concept exploit exists, increasing real-world exploitation risk.

Technical ContextAI

The vulnerability resides in the D-Link DI-8100 router's HTTP request handler, specifically within the /jingx.asp file processing. The root cause is classified as CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer), manifesting as a stack-based buffer overflow. This occurs when user-supplied input from HTTP requests is copied into a fixed-size stack buffer without proper bounds checking. The affected CPE is likely: cpe:2.3:o:d-link:di-8100_firmware:16.07.26a1:*:*:*:*:*:*:* and cpe:2.3:h:d-link:di-8100:*:*:*:*:*:*:*:*. The HTTP Request Handler component processes unvalidated input, allowing stack memory corruption and potential arbitrary code execution through stack frame manipulation and return address overwriting.

RemediationAI

Immediate actions: (1) Contact D-Link support to determine if firmware patches are available for the DI-8100 device; (2) If firmware updates exist, apply them immediately to the affected device; (3) If no patches are available and the device is end-of-life, strongly consider hardware replacement with a current, supported model; (4) Implement network segmentation to restrict access to device administration interfaces—limit /jingx.asp access to trusted administrative networks only via firewall rules; (5) Enforce strong authentication credentials and disable default passwords on the device; (6) Monitor for suspicious HTTP requests to /jingx.asp with abnormally large payloads or encoded content; (7) Consider disabling remote management features if not required; (8) Review D-Link security advisories at https://www.dlink.com/en/security for any available patches or workarounds; (9) If the device is internet-facing, immediately move it behind a NAT firewall with restricted port access.

CVE-2025-3538 HIGH POC
8.7 Apr 13

A vulnerability was found in D-Link DI-8100 16.07.26A1. Rated high severity (CVSS 8.7), this vulnerability is no authent

CVE-2025-6881 HIGH POC
8.8 Jun 30

A vulnerability was found in D-Link DI-8100 16.07.21. It has been rated as critical. Affected by this issue is some unkn

CVE-2024-44375 HIGH POC
7.5 Sep 09

D-Link DI-8100 v16.07.26A1 has a stack overflow vulnerability in the dbsrv_asp function. Rated high severity (CVSS 7.5),

CVE-2025-7602 HIGH POC
7.2 Jul 14

CVE-2025-7602 is a critical stack-based buffer overflow vulnerability in D-Link DI-8100 firmware version 16.07.26A1 affe

CVE-2025-28398 HIGH POC
7.1 Apr 01

D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in the ipsec_net_asp function via the remot_ip parameter. Rat

CVE-2025-28395 HIGH POC
7.1 Apr 01

D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in the ipsec_road_asp function via the host_ip parameter. Rat

CVE-2024-52711 MEDIUM POC
5.7 Nov 19

DI-8100 v16.07.26A1 is vulnerable to Buffer Overflow In the ip_position_asp function via the ip parameter. Rated medium

CVE-2024-7436 MEDIUM POC
5.3 Aug 03

A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07.htm. Rated medium severity (CV

CVE-2024-7833 MEDIUM
5.3 Aug 15

A vulnerability was found in D-Link DI-8100 16.07. Rated medium severity (CVSS 5.3), this vulnerability is remotely expl

CVE-2025-51281 HIGH POC
7.0 Aug 25

D-Link DI-8100 16.07.26A1 is vulnerable to Buffer Overflow via the en`, `val and id parameters in the qj_asp function. R

CVE-2025-5228 HIGH POC
8.7 May 27

A vulnerability was found in D-Link DI-8100 up to 20250523. Rated high severity (CVSS 8.7), this vulnerability is no aut

CVE-2025-44083 CRITICAL
9.8 May 21

An issue in D-Link DI-8100 16.07.26A1 allows a remote attacker to bypass administrator login authentication. Rated criti

Share

CVE-2025-7603 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy