Analysis Summary

CVE-2025-6881 CVSS:9

A vulnerability was found in D-Link DI-8100 16.07.21. It has been rated as critical. Affected by this issue is some unknown functionality of the file /pppoe_base.asp of the component jhttpd. The manipulation of the argument mschap_en leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-6882 CVSS:9

A vulnerability classified as critical has been found in D-Link DIR-513 1.0. This affects an unknown part of the file /goform/formSetWanPPTP. The manipulation of the argument curTime leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

Impact

• Buffer Overflow

Indicators of Compromise

CVE

• CVE-2025-6881

• CVE-2025-6882

Affected Vendors

Remediation

Refer to D-Link Website for patch, upgrade, or suggested workaround information.

D-Link Website