CVE-2025-11408
Published: 07 October 2025
Description
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Security Summary
CVE-2025-11408 is a buffer overflow vulnerability (CWE-119, CWE-120) affecting the D-Link DI-7001 MINI firmware version 24.04.18B1. The issue resides in an unknown function within the /dbsrv.asp file, where manipulation of the 'str' argument triggers the overflow. Published on 2025-10-07, it carries a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H), marking it as high severity.
Attackers require low privileges (PR:L) to exploit this remotely over the network with low complexity and no user interaction. Successful exploitation can result in high impacts to confidentiality, integrity, and availability, potentially allowing arbitrary code execution or system compromise on the affected device.
Advisories on VulDB (ctiid.327345, id.327345) and a related submission detail the vulnerability, while the D-Link website provides general support resources. A proof-of-concept exploit has been publicly disclosed on GitHub (DavCloudz/cve/issues/5) and may be actively used.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Buffer overflow in the web interface (/dbsrv.asp) of D-Link router firmware, remotely exploitable with low privileges (PR:L), enabling arbitrary code execution and system compromise on a public-facing network device.