Description
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of input parameters in the /web_keyword.asp endpoint. An attacker can exploit this vulnerability by sending a crafted HTTP GET request via the name, en, time, mem_gb2312, and mem_utf8 parameters.
Published: 2026-04-08
Score: n/a
EPSS: n/a
KEV: No
Impact: Remote Code Execution
Action: Apply Firmware Update
AI Analysis

Impact

Buffer overflow has been discovered in the /web_keyword.asp endpoint of the D-Link DI-8003 router, caused by improper handling of the name, en, time, mem_gb2312, and mem_utf8 parameters. An attacker can craft a malicious HTTP GET request that overflows a memory buffer, potentially enabling arbitrary code execution, threatening confidentiality, integrity, and availability of the device and any connected network.

Affected Systems

The flaw exists in D-Link DI-8003 routers running firmware version 16.07.26A1. Current firmware releases beyond this version are not known to be affected.

Risk and Exploitability

Because the vulnerability can be triggered remotely via standard HTTP requests without authentication, the potential impact is high. The CVSS score is not publicly provided, but the nature of the buffer overflow and absence of mitigations indicate a high likelihood of exploitation. The flaw is not listed in CISA's Known Exploited Vulnerabilities catalog and EPSS metrics are unavailable. An attacker can exploit the vulnerability by sending a crafted request to the exposed endpoint, using the aforementioned parameters to trigger the buffer overflow.

Generated by OpenCVE AI on April 8, 2026 at 19:56 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest firmware update for the D-Link DI-8003 router as published in the vendor's security bulletin.
  • If an update is unavailable or pending, block remote access to the /web_keyword.asp endpoint via firewall rules or web server configuration.
  • Restrict access to the router's web interface to trusted networks, and enforce strong password policies.
  • Monitor web server logs for suspicious GET requests targeting /web_keyword.asp and investigate anomalous activity.

Generated by OpenCVE AI on April 8, 2026 at 19:56 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 08 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
Title Buffer Overflow in D-Link DI-8003 /web_keyword.asp Allows Remote Exploit
Weaknesses CWE-119
CWE-787

Wed, 08 Apr 2026 18:30:00 +0000

Type Values Removed Values Added
Description A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of input parameters in the /web_keyword.asp endpoint. An attacker can exploit this vulnerability by sending a crafted HTTP GET request via the name, en, time, mem_gb2312, and mem_utf8 parameters.
References

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-04-08T17:38:40.643Z

Reserved: 2025-06-16T00:00:00.000Z

Link: CVE-2025-50665

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-04-08T19:24:17.140

Modified: 2026-04-08T21:26:13.410

Link: CVE-2025-50665

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-08T19:59:45Z

Weaknesses