CVE-2025-5228 | D-Link DI-8100 up to 20250523 jhttpd /login.cgi httpd_get_parm notify stack-based overflow

Inserito da Angelo Barbosa | Mag 26, 2025 | CVE

A vulnerability was found in D-Link DI-8100 up to 20250523. It has been classified as critical. Affected is the function httpd_get_parm of the file /login.cgi of the component jhttpd. The manipulation of the argument notify leads to stack-based buffer overflow.

This vulnerability is traded as CVE-2025-5228. The attack can only be initiated within the local network. Furthermore, there is an exploit available.

CVE-2025-5228 | D-Link DI-8100 up to 20250523 jhttpd /login.cgi httpd_get_parm notify stack-based overflow

Post correlati

CVE-2024-5121 | SourceCodester Event Registration System 1.0 e cross site scripting

CVE-2024-51330 | Ultimaker Cura up to 4.41/5.8.1 Inter-Process Communication stack-based overflow

CVE-2024-40745 | tassos Convert Forms Component 1.0.0-4.4.7 on Joomla cross site scripting

CVE-2024-6560 | Addonify Plugin up to 1.2.16 on WordPress information disclosure