CVE-2026-7857 - Vulnerability Details

- D-Link DI-8100 CGI user_group.asp sprintf buffer overflow

Description

A vulnerability has been found in D-Link DI-8100 16.07.26A1. This vulnerability affects the function sprintf of the file /user_group.asp of the component CGI Handler. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Published: 2026-05-05

Score: 8.6 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

A buffer overflow occurs in the sprintf function used by the CGI handler for the user_group.asp page on D‑Link DI‑8100 routers. The flaw is a classic CWE‑119/CWE‑120 error that allows an attacker to overflow the stack and overwrite memory. Because the CGI handler handles requests over HTTP, the attack can be launched from any remote host. Successful exploitation can lead to arbitrary code execution with the privileges of the web server process, effectively compromising the entire device.

Affected Systems

The vulnerability was identified in the D‑Link DI‑8100 router running firmware 16.07.26A1. Only this specific model and version were confirmed to be affected; other firmware releases are not known to contain the flaw at the time of this report.

Risk and Exploitability

The CVSS score of 8.6 indicates a high severity with a high exploitation impact. EPSS information is not available, so the exact likelihood of exploitation is unknown, but the flaw is publicly disclosed and can be used remotely. The vulnerability is not listed in the CISA KEV catalog. An attacker would need to send a specially crafted HTTP request to the user_group.asp CGI endpoint, triggering a stack buffer overflow that may provide remote code execution.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

D-Link

DI-8100

affected

Version	Status	Constraints
`16.07.26A1`	affected	—

Configuration 1 [-]

AND

cpe:2.3:o:dlink:di-8100_firmware:16.07.26a1:*:*:*:*:*:*:*

cpe:2.3:h:dlink:di-8100:-:*:*:*:*:*:*:*

No data.

Vendor Product Confidence Versions

D-link

Di-8100

100%

Version	Status	Scheme	Platform
`16.07.26A1`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update the firmware to a version released by D‑Link that includes a fix for the sprintf buffer overflow in the CGI handler.
If an immediate update is not possible, block or restrict access to the router’s web interface (e.g., firewall rules to only allow local network connections) to mitigate remote exploitation.
Disable the CGI service or remove the /user_group.asp endpoint if it is not required for your deployment.

Generated by OpenCVE AI on May 5, 2026 at 20:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Multiple

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.00109.

Exploitation poc

Automatable no

Technical Impact total

References

Link	Providers
https://github.com/draw-ctf/report/blob/main/DI-8100/user_group_asp_overflow.md
https://vuldb.com/submit/807853
https://vuldb.com/vuln/361134
https://vuldb.com/vuln/361134/cti
https://www.dlink.com/

History

Wed, 06 May 2026 17:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Dlink Dlink di-8100 Dlink di-8100 Firmware
CPEs		cpe:2.3:h:dlink:di-8100:-:::::::* cpe:2.3:o:dlink:di-8100_firmware:16.07.26a1:::::::*
Vendors & Products		Dlink Dlink di-8100 Dlink di-8100 Firmware

Tue, 05 May 2026 20:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		D-link D-link di-8100
Vendors & Products		D-link D-link di-8100

Tue, 05 May 2026 20:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 05 May 2026 19:30:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability has been found in D-Link DI-8100 16.07.26A1. This vulnerability affects the function sprintf of the file /user_group.asp of the component CGI Handler. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Title		D-Link DI-8100 CGI user_group.asp sprintf buffer overflow
Weaknesses		CWE-119 CWE-120
References		https://github.com/draw-ctf/report/blob/main/DI-8100/user_group_asp_overflow.md https://vuldb.com/submit/807853 https://vuldb.com/vuln/361134 https://vuldb.com/vuln/361134/cti https://www.dlink.com/
Metrics		cvssV2_0 `{'score': 8.3, 'vector': 'AV:N/AC:L/Au:M/C:C/I:C/A:C/E:POC/RL:ND/RC:UR'}` cvssV3_0 `{'score': 7.2, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}` cvssV3_1 `{'score': 7.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}` cvssV4_0 `{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}`

Subscriptions

D-link Di-8100

Dlink Di-8100 Di-8100 Firmware

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-05-05T19:15:13.939Z

Updated: 2026-05-05T19:39:19.507Z

Reserved: 2026-05-05T11:41:30.982Z

Link: CVE-2026-7857

Vulnrichment

Updated: 2026-05-05T19:39:15.784Z

NVD

Status : Analyzed

Published: 2026-05-05T20:16:41.677

Modified: 2026-05-06T17:28:10.060

Link: CVE-2026-7857

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-05T21:00:10Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Multiple

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Exploitation poc

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object