Dlink Di-8100 Firmware vulnerabilities

CVE-2025-28395 [HIGH] CWE-120 CVE-2025-28395: D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in the ipsec_road_asp function via the ho D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in the ipsec_road_asp function via the host_ip parameter.

CVE-2024-52711 [MEDIUM] CWE-120 CVE-2024-52711: DI-8100 v16.07.26A1 is vulnerable to Buffer Overflow In the ip_position_asp function via the ip para DI-8100 v16.07.26A1 is vulnerable to Buffer Overflow In the ip_position_asp function via the ip parameter.

CVE-2024-44375 [HIGH] CWE-787 CVE-2024-44375: D-Link DI-8100 v16.07.26A1 has a stack overflow vulnerability in the dbsrv_asp function. D-Link DI-8100 v16.07.26A1 has a stack overflow vulnerability in the dbsrv_asp function.

CVE-2024-7833 [MEDIUM] CWE-77 CVE-2024-7833: A vulnerability was found in D-Link DI-8100 16.07. It has been classified as critical. This affects A vulnerability was found in D-Link DI-8100 16.07. It has been classified as critical. This affects the function upgrade_filter_asp of the file upgrade_filter.asp. The manipulation of the argument path leads to command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

CVE-2024-7436 [MEDIUM] CWE-77 CVE-2024-7436: A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07. This issu A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07. This issue affects the function msp_info_htm of the file msp_info.htm. The manipulation of the argument cmd leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-273521 w