Return to CVE list

CVE-2025-3538

8.8
Critical

CVE-2025-3538

cna@vuldb.com
Awaiting Analysis
View on MITREFind on GitHub

Description

A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been rated as critical. This issue affects the function auth_asp of the file /auth.asp of the component jhttpd. The manipulation of the argument callback leads to stack-based buffer overflow. The attack needs to be approached within the local network. The exploit has been disclosed to the public and may be used.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

cna@vuldb.com
https://github.com/Fizz-L/CVE1/blob/main/DI-8100Command%20execution2.md
cna@vuldb.com
https://vuldb.com/?ctiid.304577
cna@vuldb.com
https://vuldb.com/?id.304577
cna@vuldb.com
https://vuldb.com/?submit.524224
cna@vuldb.com
https://www.dlink.com/