{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2025-50644", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-08T17:22:28.881Z", "dateReserved": "2025-06-16T00:00:00.000Z", "datePublished": "2026-04-08T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-08T17:22:28.881Z"}, "descriptions": [{"lang": "en", "value": "A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper validation of user input in the qj.asp endpoint."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://www.dlink.com/en/security-bulletin/"}, {"url": "https://github.com/xiaotea/iot-vulnerability-collection/blob/main/README.md"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}}, "dataVersion": "5.2"}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper validation of user input in the qj.asp endpoint."}], "id": "CVE-2025-50644", "lastModified": "2026-04-08T21:26:13.410", "metrics": {}, "published": "2026-04-08T19:24:15.103", "references": [{"source": "cve@mitre.org", "url": "https://github.com/xiaotea/iot-vulnerability-collection/blob/main/README.md"}, {"source": "cve@mitre.org", "url": "https://www.dlink.com/en/security-bulletin/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Awaiting Analysis"}

{}

{"analysis": {"en": {"generated_at": "2026-04-08T20:01:07.016114+00:00", "value": {"mitigation_remediation": ["Check the D\u2011Link website for a firmware update that addresses the qj.asp buffer overflow", "Apply the latest firmware to the DI\u20118003 router as soon as possible", "If a patch is not yet available, block or restrict inbound traffic to the qj.asp endpoint using a firewall or ACL", "Ensure that the router runs a unique, strong administrator password and disable remote management unless required"], "summary": {"action": "Immediate Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "The affected system is the D\u2011Link DI\u20118003 router running firmware version 16.07.26A1. No other vendors or versions are listed in the advisory.", "description_and_impact": "A buffer overflow vulnerability exists in the qj.asp endpoint of the D\u2011Link DI\u20118003 router (firmware 16.07.26A1). Improper input validation allows an attacker to send data that exceeds the allocated buffer, potentially corrupting memory and enabling arbitrary code execution on the device. If exploited, an attacker could gain full control of the router, compromise network traffic, and establish persistence. The weakness aligns with common buffer overflow patterns that threaten confidentiality, integrity, and availability of the affected network.", "risk_and_exploitability": "Although CVSS, EPSS, and KEV data are not available, the nature of a network\u2011accessible buffer overflow usually indicates a high risk of remote exploitation when an attacker can craft a malicious HTTP request to qj.asp. Current references do not indicate a publicly known exploit, but the vulnerability type warrants close scrutiny and timely mitigation. Until a vendor update is released, treat this as a critical flaw due to its remote code execution potential."}}}}, "created": "2026-04-08T20:02:26.711354+00:00", "title": "Buffer Overflow in D\u2011Link DI\u20118003 qj.asp Endpoint Enables Remote Code Execution", "updated": "2026-04-08T20:02:26.711382+00:00", "vendors": [], "weaknesses": ["CWE-119", "CWE-120"]}