Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

D-Link DI-8100 Stack-Based Buffer Overflow Vulnerability

Vulnerability

Exploited

A critical stack-based buffer overflow vulnerability has been identified in the D-Link DI-8100 router, specifically in the HTTP request handler component within the file '/jingx.asp'. This vulnerability, present in firmware version 16.07.26A1, can be exploited remotely by sending specially crafted HTTP requests, potentially leading to a denial-of-service condition.

Impact

Exploitation of this vulnerability causes a stack-based buffer overflow, which can disrupt the normal operation of the device and may be leveraged to execute arbitrary code.

Reproduction

The vulnerability can be reproduced by sending crafted HTTP requests to the '/jingx.asp' endpoint on a D-Link DI-8100 router running firmware version 16.07.26A1. This can be automated with the available public exploit, which is published on GitHub.

Added: Jul 14, 2025, 1:33 PM

Updated: Jul 14, 2025, 2:42 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

6.6

remediation

0.0

relevance

0.2

threat

8.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

6.6

remediation

0.0

relevance

0.2

threat

8.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

D-Link DI-8100 Stack-Based Buffer Overflow Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

D-Link DI-8100

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating