CVE-2025-8949 | D-Link DIR-825 2.10 httpd ping_response.cgi get_ping_app_stat ping_ipaddr stack-based overflow

A vulnerability classified as critical was found in D-Link DIR-825 2.10. Affected by this vulnerability is the function get_ping_app_stat of the file ping_response.cgi of the component httpd. The manipulation of the argument ping_ipaddr leads to stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is known as CVE-2025-8949. The attack can be launched remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More