CVE-2025-50673
Published: 08 April 2026
Summary
CVE-2025-50673 is a high-severity Classic Buffer Overflow (CWE-120) vulnerability in Dlink Di-8003 Firmware. Its CVSS base score is 7.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 8.6th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).
Deeper analysis
CVE-2025-50673 is a buffer overflow vulnerability (CWE-120) in the D-Link DI-8003 device running firmware version 16.07.26A1. The flaw arises from improper handling of the http_lanport parameter in the /webgl.asp endpoint, which can lead to memory corruption when processing malformed input.
Remote attackers require no privileges or user interaction to exploit this vulnerability over the network with low complexity. The CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) indicates that successful exploitation results in high availability impact, such as device crashes or reboots, while confidentiality and integrity remain unaffected.
Advisories and further details, including potential mitigations or patches, are documented in references such as the iot-vulnerability-collection on GitHub at https://github.com/xiaotea/iot-vulnerability-collection/blob/main/README.md and D-Link's security bulletin page at https://www.dlink.com/en/security-bulletin/. Security practitioners should review these sources for firmware updates or configuration guidance.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-209363
Vulnerability details
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the http_lanport parameter in the /webgl.asp endpoint.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Buffer overflow in public web endpoint (/webgl.asp) directly enables remote exploitation of a network device (T1190) resulting in system/application crash and denial of service (T1499.004).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly addresses the buffer overflow by requiring validation and sanitization of the http_lanport parameter in the /webgl.asp endpoint to prevent malformed input from causing memory corruption.
Implements memory protections such as stack guards or address space randomization to mitigate exploitation of the buffer overflow vulnerability leading to crashes.
Requires timely remediation of the identified buffer overflow flaw through firmware updates as referenced in D-Link security bulletins.