CVE-2025-4883 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-4883 PUBLISHED CVSS 8.600000381469727 HIGH

A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been declared as critical. This vulnerability affects the function ctxz_asp of the file /ctxz.asp of the component Connection Limit Page. The manipulation of the argument def/defTcp/defUdp/defIcmp/defOther leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

EPSS 1.22% · 79.0th percentile

Risk Scores

CVSS v4.0

8.600000381469727

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

EPSS Score

1.22%

79.0th percentile

Affected Products

Vendor	Product	Versions
D-Link	DI-8100	16.07.26A1
dlink	di-8100g_firmware	16.07.26a1

Timeline

May 18, 2025 CVE Published
May 18, 2025 PoC Published
May 18, 2025 PoC Published
May 19, 2025 EPSS Score
May 19, 2025 CVE Updated
May 30, 2025 EPSS Score
Jun 9, 2025 EPSS Score
Jun 20, 2025 EPSS Score
Jul 1, 2025 EPSS Score
Jul 11, 2025 EPSS Score
Jul 22, 2025 EPSS Score
Aug 2, 2025 EPSS Score

References

Open in Interactive Console →