cbcvebase.

Dlink Di-8003 Firmware vulnerabilities

34 known vulnerabilities affecting dlink/di-8003_firmware.

Total CVEs
34
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH29MEDIUM4

Vulnerabilities

Page 1 of 2
CVE-2025-50653HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50653 [HIGH] CWE-120 CVE-2025-50653: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the name and mem parameters in the /time_group.asp endpoint.
nvd
CVE-2025-50673HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50673 [HIGH] CWE-120 CVE-2025-50673: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the http_lanport parameter in the /webgl.asp endpoint.
nvd
CVE-2025-50655HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50655 [HIGH] CWE-121 CVE-2025-50655: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the name parameter in the /thd_group.asp endpoint.
nvd
CVE-2025-50647HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50647 [HIGH] CWE-120 CVE-2025-50647: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1, specifically in the handling of A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1, specifically in the handling of the wans parameter in the qos.asp endpoint.
nvd
CVE-2025-50646HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50646 [HIGH] CWE-120 CVE-2025-50646: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to insufficient input valida A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to insufficient input validation on the name parameter in the /qos_type_asp.asp endpoint.
nvd
CVE-2025-50645HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50645 [HIGH] CWE-120 CVE-2025-50645: A vulnerability has been discovered in D-Link DI-8003 16.07.26A1, which can lead to a buffer overflo A vulnerability has been discovered in D-Link DI-8003 16.07.26A1, which can lead to a buffer overflow when the s parameter in the pppoe_list_opt.asp endpoint is manipulated. By sending a crafted request with an excessively large value for the s parameter, an attacker can trigger a buffer overflow condition.
nvd
CVE-2025-50667HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50667 [HIGH] CWE-120 CVE-2025-50667: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the iface parameter in the /wan_line_detection.asp endpoint.
nvd
CVE-2025-50664HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50664 [HIGH] CWE-121 CVE-2025-50664: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of para A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of parameters in the /user_group.asp endpoint. The attacker can exploit this vulnerability by sending a crafted HTTP GET request with parameters name, mem, pri, and attr.
nvd
CVE-2025-50649HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50649 [HIGH] CWE-120 CVE-2025-50649: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper input validation A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper input validation in the vlan_name parameter in the /shut_set.asp endpoint.
nvd
CVE-2025-50652HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50652 [HIGH] CWE-120 CVE-2025-50652: An issue in D-Link DI-8003 16.07.26A1 related to improper handling of the id parameter in the /savep An issue in D-Link DI-8003 16.07.26A1 related to improper handling of the id parameter in the /saveparm_usb.asp endpoint.
nvd
CVE-2025-50660HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50660 [HIGH] CWE-121 CVE-2025-50660: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the name parameter in the /url_member.asp endpoint.
nvd
CVE-2025-50650HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50650 [HIGH] CWE-120 CVE-2025-50650: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to inadequate validation of A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to inadequate validation of input size in the routes_static parameter in the /router.asp endpoint.
nvd
CVE-2025-50648HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50648 [HIGH] CWE-120 CVE-2025-50648: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to inadequate input validati A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to inadequate input validation in the /tggl.asp endpoint.
nvd
CVE-2025-50662HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50662 [HIGH] CWE-121 CVE-2025-50662: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the name parameter in the /url_group.asp endpoint.
nvd
CVE-2025-50670HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50670 [HIGH] CWE-120 CVE-2025-50670: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of para A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of parameters in the /xwgl_bwr.asp endpoint. An attacker can exploit this vulnerability by sending a crafted HTTP GET request in the name, qq, and time parameters.
nvd
CVE-2025-50668HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50668 [HIGH] CWE-120 CVE-2025-50668: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the s parameter in the /web_list_opt.asp endpoint.
nvd
CVE-2025-50661HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50661 [HIGH] CWE-121 CVE-2025-50661: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of mult A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of multiple parameters in the /url_rule.asp endpoint. An attacker can exploit this vulnerability by sending a crafted HTTP GET request with parameters name, en, ips, u, time, act, rpri, and log.
nvd
CVE-2025-50659HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50659 [HIGH] CWE-121 CVE-2025-50659: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the custom_error parameter in the /user.asp endpoint.
nvd
CVE-2025-50644HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50644 [HIGH] CWE-120 CVE-2025-50644: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper validation of us A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper validation of user input in the qj.asp endpoint.
nvd
CVE-2025-50657HIGHCVSS 7.5v16.07.26a12026-04-08
CVE-2025-50657 [HIGH] CWE-121 CVE-2025-50657: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the pid parameter in the /trace.asp endpoint.
nvd
1 / 2Next →