CVE-2026-7851 PUBLISHED

A vulnerability was identified in D-Link DI-8100 16.07.26A1. This affects the function sprintf of the file yyxz.asp. The manipulation of the argument ID leads to stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit is publicly available and might be used.

• draw (VulDB User) reporter

• VDB-361128 | D-Link DI-8100 yyxz.asp sprintf stack-based overflow
• VDB-361128 | CTI Indicators (IOB, IOC, IOA)
• Submit #807798 | D-Link DI-8100 16.07.26A1 Denial of Service
• https://github.com/draw-ctf/report/blob/main/DI-8100/yyxz_dlink_asp_overflow.md
• https://www.dlink.com/

• Stack-based Buffer Overflow CWE
• Memory Corruption CWE