CVE-2025-9938 | D-Link DI-8400 16.07.26A1 /yyxz.asp yyxz_dlink_asp ID stack-based overflow

Inserito da Angelo Barbosa | Set 3, 2025 | CVE

A vulnerability has been found in D-Link DI-8400 16.07.26A1 and classified as critical. The affected element is the function yyxz_dlink_asp of the file /yyxz.asp. This manipulation of the argument ID causes stack-based buffer overflow.

The identification of this vulnerability is CVE-2025-9938. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-9938 | D-Link DI-8400 16.07.26A1 /yyxz.asp yyxz_dlink_asp ID stack-based overflow

Post correlati

CVE-2024-24900 | Dell Secure Connect Gateway prior 5.22.00.16 Policy improper authorization (dsa-2024-077)

CVE-2024-42599 | SeaCMS 13.0 admin_files.php access control

CVE-2023-5636 | ArslanSoft Education Portal up to 1.0 unrestricted upload

CVE-2024-6811 | IrfanView WSQ File Parser out-of-bounds write