CVE-2025-57637

HIGH

D-Link DI-7100G 2020-02-21 - Heap-based Buffer Overflow via jhttpd viav4 Parameter

Title source: llm

Description

Buffer overflow vulnerability in D-Link DI-7100G 2020-02-21 in the sub_451754 function of the jhttpd service in the viav4 parameter allowing attackers to cause a denial of service or execute arbitrary code.

References (2)

Core 2

Core References

Exploit, Third Party Advisory

https://github.com/glkfc/IoT-Vulnerability/blob/main/D-Link/Dlink_2.md

View Exploit ZIP pw:eip

Product

https://www.dlink.com/en/security-bulletin/

Scores

CVSS v3 7.5

EPSS 0.0061

EPSS Percentile 44.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-122

Status published

Products (1)

dlink/di-7100g_firmware 2020-02-21c1

Published Sep 23, 2025

Tracked Since Feb 18, 2026