- Description
- D-link DI-8100 16.07.26A1 is vulnerable to Command Injection. An attacker can exploit this vulnerability by crafting specific HTTP requests, triggering the command execution flaw and gaining the highest privilege shell access to the firmware system.
- Source
- cve@mitre.org
- NVD status
- Analyzed
CVSS 3.1
- Type
- Secondary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-77
- Hype score
- Not currently trending
Actively exploited CVE : CVE-2025-44084
@transilienceai
21 May 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
CVE-2025-44084 D-link DI-8100 16.07.26A1 is vulnerable to Command Injection. An attacker can exploit this vulnerability by crafting specific HTTP requests, triggering the command ex… https://t.co/wd992cr5rv
@CVEnew
20 May 2025
207 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:dlink:di-8100g_firmware:16.07.26a1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EFEBF6C8-22E0-4B38-891F-DA1B882A8A61"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:dlink:di-8100:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "8D417784-56F2-40AF-8FE8-C00E6F332131"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]