CVE-2025-51281

CWE-120 — Classic Buffer Overflow3 documents3 sources

Severity

7.0HIGH

EPSS

0.1%

top 79.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Dlink Di-8100 Firmware

Timeline

PublishedAug 25

Latest updateAug 26

Description

D-Link DI-8100 16.07.26A1 is vulnerable to Buffer Overflow via the en`, `val and id parameters in the qj_asp function. This vulnerability allows authenticated attackers to cause a Denial of Service (DoS) by sending crafted GET requests with overly long values for these parameters.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:LExploitability: 2.2 | Impact: 4.7

Affected Packages1 packages

▶NVDdlink/di-8100_firmware16.07.26a1

🔴Vulnerability Details

GHSA

GHSA-wx86-7gq4-q238: D-Link DI-8100 16↗2025-08-26

▶

CVEList

CVE-2025-51281: D-Link DI-8100 16↗2025-08-25

▶