← Back

CVE-2025-28395

nvd nist
Published: Apr 1, 2025Modified: Jun 17, 2026

JSON object

Loading...
7.1
Vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H
Exploitability: 1.6 / Impact: 5.5
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in the ipsec_road_asp function via the host_ip parameter.

Affected (1)

Dlink
1 product
Di 8100 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Di 8100 Firmware
Version 16.07.26
Running on/withPlatform Versions
Dlink
Di 8100
Version a1

Related CWEs

CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (1)

Source: cve@mitre.org
ExploitThird Party Advisory

Timeline

No history available yet.