Description
An issue in D-Link DI-8003 16.07.26A1 related to improper handling of the id parameter in the /saveparm_usb.asp endpoint.
Published: 2026-04-08
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: Potential Unauthorized Configuration Change
Action: Patch
AI Analysis

Impact

An improper handling of the id parameter in the /saveparm_usb.asp endpoint of the D‑Link DI‑8003 router allows an attacker to alter device configuration settings without proper authorization, resulting in unauthorized changes to the USB storage settings.

Affected Systems

This vulnerability is specific to D‑Link DI‑8003 routers running firmware version 16.07.26A1, and devices with older firmware versions that reuse the same code path may also be affected.

Risk and Exploitability

The CVSS score is not provided and the EPSS score is unavailable, so precise risk quantification is difficult. However, the endpoint is exposed via the web interface, making it reachable over the Internet without requiring physical access. An attacker could send a crafted HTTP request with a malicious id value to manipulate configuration. Although no public exploits have been documented and the vulnerability is not listed in the CISA KEV catalog, the potential for unauthorized configuration change suggests a moderate to high risk if exploited.

Generated by OpenCVE AI on April 8, 2026 at 20:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the router to the latest firmware released by D‑Link that addresses the /saveparm_usb.asp handling issue.
  • If a firmware update is unavailable, restrict web access to the device or block the /saveparm_usb.asp endpoint using firewall or ACL rules.
  • Monitor device logs for unexpected changes to the USB configuration setting and audit traffic to the /saveparm_usb.asp endpoint for suspicious activity.

Generated by OpenCVE AI on April 8, 2026 at 20:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 10 Apr 2026 21:15:00 +0000

Type Values Removed Values Added
First Time appeared Dlink di-8003 Firmware
CPEs cpe:2.3:h:dlink:di-8003:-:*:*:*:*:*:*:*
cpe:2.3:o:dlink:di-8003_firmware:16.07.26a1:*:*:*:*:*:*:*
Vendors & Products Dlink di-8003 Firmware

Fri, 10 Apr 2026 16:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-120
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 09 Apr 2026 08:30:00 +0000

Type Values Removed Values Added
Title Unauthorized Configuration via /saveparm_usb ASP id Handling on D‑Link DI‑8003
Weaknesses CWE-639

Wed, 08 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Dlink
Dlink di-8003
Vendors & Products Dlink
Dlink di-8003

Wed, 08 Apr 2026 18:30:00 +0000

Type Values Removed Values Added
Description An issue in D-Link DI-8003 16.07.26A1 related to improper handling of the id parameter in the /saveparm_usb.asp endpoint.
References

Subscriptions

Dlink Di-8003 Di-8003 Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-04-10T15:41:34.397Z

Reserved: 2025-06-16T00:00:00.000Z

Link: CVE-2025-50652

cve-icon Vulnrichment

Updated: 2026-04-10T15:37:19.808Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-08T19:24:15.917

Modified: 2026-04-10T21:05:39.810

Link: CVE-2025-50652

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-09T08:28:31Z

Weaknesses