CVE-2025-50666: A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of multiple parameters in t

Description

A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of multiple parameters in the /web_post.asp endpoint. An attacker can exploit this vulnerability by sending a crafted HTTP GET request in parameters such as name, en, user_id, log, and time.

Affected Products

Vendor	Product	Versions
—	n/a	n/a

References

Related News (1 articles)

Tier C

VulDB8h ago

CVE-2025-50666 | D-Link DI-8003 16.07.26A1 /web_post.asp buffer overflow

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

PublishedApr 8, 2026

Last enriched8h agov2

Trending Score20

Source articles1

Independent1

Info Completeness6/14

Missing: cvss, epss, cwe, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Pin to Dashboard

Verification

State: verified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 8, 2026

Discovered by ZDM

Apr 8, 2026

Updated: affectedVersions

Apr 8, 2026

Version History

Last enriched 8h ago

v2Tier C8h ago

Updated vendor to D-Link, product to DI-8003, severity to CRITICAL, and marked the vulnerability as actively exploited.

affectedVersions

via VulDB

v18h ago

Initial creation