Buffer Overflow Vulnerability in D-Link DI-8100 Router
CVE-2025-28395

7.1HIGH

Key Information:

Vendor: D-Link
Status: DI-8100
Vendor: CVE Published:; 1 April 2025

Summary

The D-Link DI-8100 router, specifically version 16.07.26A1, is susceptible to a Buffer Overflow vulnerability in the ipsec_road_asp function. This flaw arises due to improper handling of the host_ip parameter, which could allow an attacker to exploit this weakness and potentially execute arbitrary code. It is essential for users of this router model to evaluate their exposure and apply necessary security measures to safeguard their networks.

References

https://github.com/Fizz-L/Vulnerability-report/blob/main/...

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

Low

Integrity:

High

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 1, 2025
Vulnerability Reserved
Mar 11, 2025