Buffer Overflow Vulnerability in D-Link DI-7100G Product
CVE-2025-57637

7.5HIGH

Key Information:

Vendor: D-Link
Status: DI-7100G
Vendor: CVE Published:; 23 September 2025

What is CVE-2025-57637?

A buffer overflow vulnerability exists in the jhttpd service of the D-Link DI-7100G, specifically within the sub_451754 function. This flaw can be exploited by attackers to induce a denial of service situation or execute arbitrary code, leading to unauthorized access and control over the affected device. Users are urged to apply security updates to mitigate this risk.

References

https://www.dlink.com/en/security-bulletin/

https://github.com/glkfc/IoT-Vulnerability/blob/main/D-Li...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 23, 2025
Vulnerability Reserved
Aug 17, 2025

JSON