CNNVD-202507-2592 Information

CNNVD ID

CNNVD-202507-2592

Related CVE

CVE-2025-7911

• CNNVD Published: 2025-07-20

Description (Chinese)

D-Link DI-8100是中国友讯（D-Link）公司的一款专为中小型网络环境设计的无线宽带路由器。 D-Link DI-8100 1.0版本存在安全漏洞，该漏洞源于对文件/upnp_ctrl.asp中参数remove_ext_proto/remove_ext_port的错误操作导致栈缓冲区溢出。

Description (English)

D-Link DI-8100 is a wireless broadband router designed for the small and medium-sized network environment by the Chinese company D-Link. There is a security loophole in version D-Link DI-8100 1.0, which stems from an error in the application of the parameter remove ext proto/remove ext port to file/upnp ctrl.asp, resulting in the spilling of the silo buffer.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

友讯

Published

2025-07-20

Last Modified

2026-02-24

References

https://github.com/buobo/bo-s-CVE/blob/main/DI-8100/upnp_ctrl_asp.md https://vuldb.com/?id.317026 https://vuldb.com/?submit.618641 https://vuldb.com/?ctiid.317026 https://vuldb.com/?submit.618640 https://www.dlink.com/ https://access.redhat.com/security/cve/cve-2025-7911