EUVD-2026-33693
GHSA-m47m-chp5-wgqj
Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
5DescriptionCVE.org
A vulnerability was detected in D-Link DI-7001 MINI up to 19.09.19A1. Impacted is the function sprintf of the file /httpd_debug.asp of the component API. The manipulation of the argument Time results in stack-based buffer overflow. The attack may be performed from remote. The exploit is now public and may be used.
AnalysisAI
Stack-based buffer overflow in D-Link DI-7001 MINI routers (firmware up to 19.09.19A1) allows authenticated remote attackers to corrupt memory via the Time parameter passed to the sprintf function in /httpd_debug.asp. Publicly available exploit code exists on GitHub, and the CVSS 4.0 score of 7.4 reflects high confidentiality, integrity, and availability impact with low privilege requirement and no user interaction. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Attacker must have network reachability to the device's HTTP management interface and valid low-privileged credentials (CVSS PR:L), then issue a request to the /httpd_debug.asp endpoint with a malicious Time argument; no user interaction is required (UI:N) and attack complexity is low (AC:L/AT:N). … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | The CVSS 4.0 vector AV:N/AC:L/AT:N/PR:L/UI:N indicates a network-reachable, low-complexity attack that nonetheless requires some level of authentication (PR:L), with high impact on confidentiality, integrity, and availability on the vulnerable component. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker who has obtained low-privilege credentials to the DI-7001 MINI web interface - through phishing, credential reuse, default-password scanning, or insider access - sends a crafted HTTP request to /httpd_debug.asp with an over-long Time parameter, triggering the sprintf-based stack overflow and overwriting the saved return address. Using the publicly available PoC from the 666324/dlink-DI-7001MINI-8G-vuln repository, they redirect execution to shellcode or a ROP chain to gain a root shell on the device, then pivot into the internal network behind the router. |
| Remediation | No vendor-released patch identified at time of analysis - the references include only the VulDB advisory (https://vuldb.com/cve/CVE-2026-10270) and the public PoC repository (https://github.com/666324/dlink-DI-7001MINI-8G-vuln), with no link to a fixed firmware build on D-Link's support site. … Detailed patch versions, workarounds, and compensating controls in full report. |
Recommended ActionAI
Within 24 hours: Inventory all D-Link DI-7001 MINI routers and assess whether the management interface on firmware ≤19.09.19A1 is accessible from untrusted networks or the internet. …
Sign in for detailed remediation steps and compensating controls.
Threat intelligence, references, and detailed analysis are available after sign-in.
More from same product – last 7 days
Share
External POC / Exploit Code
Leaving vuln.today