VYPR
Unrated severityNVD Advisory· Published May 27, 2025· Updated May 27, 2025

D-Link DI-8100 jhttpd login.cgi httpd_get_parm stack-based overflow

CVE-2025-5228

Description

A vulnerability was found in D-Link DI-8100 up to 20250523. It has been classified as critical. Affected is the function httpd_get_parm of the file /login.cgi of the component jhttpd. The manipulation of the argument notify leads to stack-based buffer overflow. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Dlink/DI-8100llm-fuzzy2 versions
    <<20250523+ 1 more
    • (no CPE)range: <<20250523
    • (no CPE)range: 20250523

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.