CVE-2025-9938 | D-Link DI-8400 16.07.26A1 /yyxz.asp yyxz_dlink_asp ID stack-based overflow

Inserito da Angelo Barbosa | Set 3, 2025 | CVE

A vulnerability has been found in D-Link DI-8400 16.07.26A1 and classified as critical. The affected element is the function yyxz_dlink_asp of the file /yyxz.asp. This manipulation of the argument ID causes stack-based buffer overflow.

The identification of this vulnerability is CVE-2025-9938. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-9938 | D-Link DI-8400 16.07.26A1 /yyxz.asp yyxz_dlink_asp ID stack-based overflow

Post correlati

CVE-2025-54125 | xwiki-platform up to 16.4.6/16.10.4/17.1.x templates/xml.vm exposure of private personal information to an unauthorized actor (GHSA-57q2-6cp4-9mq3)

CVE-2024-34402 | uriparser up to 0.9.7 UriQuery.c ComposeQueryEngine integer overflow (ID 183)

CVE-2024-12988 | Netgear R6900P/R7000P 1.3.3.154 HTTP Header sub_16C4C Host buffer overflow

CVE-2024-8483 | farookibrahim MAS Static Content Plugin up to 1.0.8 on WordPress static_content information disclosure