CNNVD-202507-2594 Information

CNNVD ID

CNNVD-202507-2594

Related CVE

CVE-2025-7908

• CNNVD Published: 2025-07-20

Description (Chinese)

D-Link DI-8100是中国友讯（D-Link）公司的一款专为中小型网络环境设计的无线宽带路由器。 D-Link DI-8100 1.0版本存在安全漏洞，该漏洞源于对文件/ddns.asp?opt=add中函数sprintf的参数mx的错误操作导致栈缓冲区溢出。

Description (English)

D-Link DI-8100 is a wireless broadband router designed for the small and medium-sized network environment by the Chinese company D-Link. There is a security loophole in version D-Link DI-8100 1.0, which stems from an error in the mx of the sprintf function in file/ddns.asp?opt=add, resulting in the spilling of the silo buffer.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

友讯

Published

2025-07-20

Last Modified

2026-02-24

References

https://vuldb.com/?id.317023 https://vuldb.com/?submit.618582 https://vuldb.com/?ctiid.317023 https://www.dlink.com/ https://github.com/buobo/bo-s-CVE/blob/main/DI-8100/wp.md https://access.redhat.com/security/cve/cve-2025-7908