How to fix EUVD-2025-209359?

Within 24 hours: Inventory all D-Link DI-8003 and DI-8003G routers in production and document firmware versions currently deployed. Within 7 days: Implement network-level access controls restricting external access to the /wan_ping.asp endpoint via firewall rules or WAF policies; consider disabling WAN ping functionality if operationally feasible. Within 30 days: Contact D-Link support to confirm patch timeline; evaluate replacement with patched router models or alternative vendors if no patch is released within 60 days.

Is D-Link affected by EUVD-2025-209359?

D-Link DI-8003 and DI-8003G routers (versions 16.07.26A1 and 19.12.10A1) contain an unauthenticated buffer overflow vulnerability that allows remote attackers to crash affected devices, disrupting network connectivity for all downstream users.

EUVD-2025-209359

| CVE-2025-50669 HIGH

2026-04-08 mitre

GHSA-9vm7-74c3-v5fg

7.5

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

Analysis Generated

Apr 08, 2026 - 19:31 vuln.today

EUVD ID Assigned

Apr 08, 2026 - 19:31 euvd

EUVD-2025-209359

CVE Published

Apr 08, 2026 - 00:00 nvd

HIGH 7.5

Description

A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 and DI-8003G 19.12.10A1 due to improper handling of the wan_ping parameter in the /wan_ping.asp endpoint.

Analysis

Buffer overflow in D-Link DI-8003 (16.07.26A1) and DI-8003G (19.12.10A1) routers enables unauthenticated remote denial-of-service through improper handling of the wan_ping parameter at the /wan_ping.asp endpoint. Network-accessible attack requires no user interaction or privileges. CVSS:3.1 score 7.5 (High) reflects availability impact. No public exploit identified at time of analysis. Low observed exploitation activity (EPSS 0.02%).

Technical Context

CWE-120 buffer overflow occurs when /wan_ping.asp endpoint processes oversized wan_ping parameter without bounds checking. Unauthenticated network access (CVSS AV:N, PR:N) enables memory corruption leading to service disruption. Vulnerability affects web management interface parsing routines in legacy D-Link router firmware versions.

Affected Products

D-Link DI-8003 firmware version 16.07.26A1, D-Link DI-8003G firmware version 19.12.10A1. Both models are network routers with exposed web management interfaces.

Remediation

Consult D-Link security bulletin at https://www.dlink.com/en/security-bulletin/ for patched firmware releases addressing CVE-2025-50669. No vendor-released patch version independently confirmed at time of analysis. If updated firmware unavailable, disable remote web management access and restrict administrative interface to trusted internal networks only via firewall rules. Implement IP allowlisting for management access. Monitor https://nvd.nist.gov/vuln/detail/CVE-2025-50669 for updated vendor guidance. Consider replacement with actively supported hardware if D-Link issues end-of-life notice for affected models.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +38

POC: 0

EUVD-2025-209359 vulnerability details – vuln.today

Back

EUVD-2025-209359

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

EUVD-2025-209359

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

External POC / Exploit Code