CVE-2026-7855 - Vulnerability Analysis

Overview

D-Link DI-8100 16.07.26A1 contains a buffer overflow caused by manipulation of the "Name" argument in /tggl.asp HTTP Request Handler, letting remote attackers cause memory corruption, exploit requires crafted request.

Severity & Score

Impact

Remote attackers can cause memory corruption, potentially leading to denial of service or remote code execution.

Mitigation

Update to the latest available version.

References

• https://github.com/draw-ctf/report/blob/main/DI-8100/tggl_asp_overflow.md
• https://vuldb.com/submit/807841
• https://vuldb.com/vuln/361132
• https://vuldb.com/vuln/361132/cti
• https://www.dlink.com/

Related Resources

• Vulnerability Intelligence Dashboard
• Credential Scanner