Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
3DescriptionCVE.org
A flaw has been found in D-Link DI-8100 16.07.26A1. This affects an unknown part of the file /url_member.asp of the component Web Management Interface. Executing a manipulation of the argument Name can lead to buffer overflow. The attack can be launched remotely. The exploit has been published and may be used.
AnalysisAI
Buffer overflow in D-Link DI-8100 router firmware 16.07.26A1 allows authenticated administrators to execute arbitrary code via crafted 'Name' parameter to /url_member.asp in the web management interface. Public exploit code exists on GitHub, demonstrating active proof-of-concept availability. EPSS data unavailable; CVSS 7.2 reflects high impact but limited by requirement for high-privilege (admin) authentication, reducing real-world urgency for most organizations unless admin credentials are compromised or insider threat exists.
Technical ContextAI
The vulnerability affects the D-Link DI-8100 routing platform's web-based management interface, specifically in the /url_member.asp endpoint. The flaw is a classic buffer overflow (CWE-120) triggered by insufficient input validation on the 'Name' parameter. Buffer overflows occur when data written to a buffer exceeds its allocated memory boundary, allowing attackers to overwrite adjacent memory regions including return addresses and function pointers. In web management interfaces typically written in C/C++, lack of bounds checking on string operations (strcpy, sprintf, etc.) commonly causes this vulnerability class. The CPE identifier cpe:2.3:a:d-link:di-8100:*:*:*:*:*:*:*:* indicates the application-level firmware component is affected, with version 16.07.26A1 specifically identified.
RemediationAI
No vendor-released patch or updated firmware version has been identified in the available data at time of analysis. Until D-Link issues a security advisory with patched firmware, implement the following compensating controls with associated trade-offs: (1) Restrict access to the web management interface (/url_member.asp and entire admin panel) to trusted internal management networks only via firewall rules or router ACLs - blocks remote exploitation but requires VPN or jump host for legitimate remote administration. (2) Disable web-based management entirely if CLI/serial console access is viable for your operations - eliminates attack surface but increases administrative overhead. (3) Implement strong multi-factor authentication for all administrator accounts if supported by the platform - raises attacker cost but does not prevent exploitation after successful authentication. (4) Monitor admin session logs for unusual 'Name' parameter lengths or special characters in /url_member.asp requests - provides detection capability but no prevention. Check D-Link security advisories at https://www.dlink.com/ and the support portal for DI-8100 regularly for firmware updates. Consider replacing end-of-life hardware if D-Link discontinues security support for this model.
The D-Link DIR-645 Wired/Wireless Router Rev. Rated high severity (CVSS 8.8), this vulnerability is no authentication re
The ping tool in multiple D-Link and TRENDnet devices allow remote attackers to execute arbitrary code via the ping_addr
D-Link DIR-820L 1.05B03 was discovered to contain remote command execution (RCE) vulnerability via HTTP POST to get set
Stack-based buffer overflow in the do_hnap function in www/my_cgi.cgi in D-Link DSP-W215 (Rev. Rated critical severity (
Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DIR-600 router (rev. Rated high severity (CVSS 8.0)
Unrestricted file upload vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows remote authenticated use
D-Link DIR-600 Rev Bx devices with v2.x firmware allow remote attackers to read passwords via a model/__show_info.php?RE
Multiple cross-site scripting (XSS) vulnerabilities in D-Link DIR-645 Router (Rev. Rated medium severity (CVSS 4.3), thi
Directory traversal vulnerability in D-Link DVG-N5402SP with firmware W1000CN-00, W1000CN-03, or W2000EN-00 allows remot
A vulnerability in the D-Link DIR-859 router with firmware version A3 1.05 and earlier permits unauthorized individuals
The web interface of multiple D-Link routers, including DIR-600 rev B (≤2.14b01) and DIR-300 rev B (≤2.13), contains an
An OS command injection vulnerability exists in various legacy D-Link routers-including DIR-300 rev B and DIR-600 (firmw
Same weakness CWE-120 – Classic Buffer Overflow
View allSame technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-27486