CVE-2025-3538 | D-Link DI-8100 16.07.26A1 jhttpd /auth.asp auth_asp callback stack-based overflow

A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been rated as critical. This issue affects the function auth_asp of the file /auth.asp of the component jhttpd. The manipulation of the argument callback leads to stack-based buffer overflow.

The identification of this vulnerability is CVE-2025-3538. The attack needs to be approached within the local network. Furthermore, there is an exploit available.VulDB Recent EntriesRead More