VYPR
Unrated severityNVD Advisory· Published Oct 6, 2025· Updated Oct 6, 2025

D-Link DI-7100G C1 jhttpd login.cgi sub_4C0990 buffer overflow

CVE-2025-11338

Description

A flaw has been found in D-Link DI-7100G C1 up to 20250928. This vulnerability affects the function sub_4C0990 of the file /webchat/login.cgi of the component jhttpd. Executing manipulation of the argument openid can lead to buffer overflow. It is possible to launch the attack remotely. The exploit has been published and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Dlink/DI-7100Gllm-fuzzy2 versions
    <=20250928+ 1 more
    • (no CPE)range: <=20250928
    • (no CPE)range: 20250928

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.