High severity8.1NVD Advisory· Published Jan 9, 2017· Updated May 6, 2026

CVE-2016-10125

Description

D-Link DGS-1100 devices with Rev.B firmware 1.01.018 have a hardcoded SSL private key, which allows man-in-the-middle attackers to spoof devices by hijacking an HTTPS session.

Affected products

Dlink/Dgs 1100 Firmware
cpe:2.3:o:dlink:dgs-1100_firmware:1.01.018:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

labs.integrity.pt/advisories/dlink-dgs-1100-hardcoded-keys/nvdExploitMitigationThird Party Advisory
www.securityfocus.com/bid/95329nvd

News mentions

No linked articles in our index yet.

cvss	0.526
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000