Buffer Overflow Vulnerability in D-Link DI-8100 by D-Link
CVE-2025-51281

7HIGH

Key Information:

Vendor: D-Link
Status: D-Link DI-8100
Vendor: CVE Published:; 25 August 2025

What is CVE-2025-51281?

The D-Link DI-8100 version 16.07.26A1 is susceptible to a buffer overflow vulnerability within the qj_asp function. This security weakness allows authenticated users to execute Denial of Service (DoS) attacks by submitting specially crafted GET requests containing excessively long input values through the 'en', 'val', and 'id' parameters. Successful exploitation can lead to service disruptions, highlighting the importance of immediate updates and security measures.

References

https://www.dlink.com/en/security-bulletin/

https://github.com/BinaryHK/CVE/blob/main/CVE-2025-51281/...

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 25, 2025
Vulnerability Reserved
Jun 16, 2025