CVE Catalog

CVE-2026-7853

Critical
Published: Translated: NVD NIST

Summary

A weakness has been identified in D-Link DI-8100 version 16.07.26A1, affecting the sprintf function in the /auto_reboot.asp file of the HTTP Handler component. Manipulation of the enable/time argument leads to buffer overflow, allowing for remote attack initiation.

Risk Assessment

The organization is exposed to remote attacks that could lead to device takeover. The publicly available exploit increases the risk of successful attacks.

Recommendation

It is recommended to update the device firmware to the latest version to mitigate this vulnerability. Additionally, monitor network traffic for potential attack attempts.

Original NVD description (English source)

A weakness has been identified in D-Link DI-8100 16.07.26A1. Affected is the function sprintf of the file /auto_reboot.asp of the component HTTP Handler. This manipulation of the argument enable/time causes buffer overflow. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be used for attacks.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS