CNNVD-202507-1190 Information

CNNVD ID

CNNVD-202507-1190

Related CVE

CVE-2025-7194

• CNNVD Published: 2025-07-08

Description (Chinese)

D-Link DI-500WF是中国友讯（D-Link）公司的一款面板式无线接入点。 D-Link DI-500WF 17.04.10A1T版本存在安全漏洞，该漏洞源于组件jhttpd中文件ip_position.asp函数sprintf存在栈缓冲区溢出。

Description (English)

D-Link DI-500WF is a panel-based wireless access point for the Chinese company D-Link. The D-Link DI-500WF 17.04.10A1T version has a security loophole, which stems from the spilling out of the sprintf sprintf of the document ip position.asp in component jhttpd.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

D-Zero

Published

2025-07-08

Last Modified

2026-02-24

References

https://github.com/BigMancer/CVE/issues/1 https://vuldb.com/?id.315133 https://vuldb.com/?submit.607311 https://vuldb.com/?ctiid.315133 https://www.dlink.com/ https://access.redhat.com/security/cve/cve-2025-7194