CVE-2025-25896

low-risk

Published 2025-02-18

A buffer overflow vulnerability was discovered in D-Link DSL-3782 v1.01 via the destination, netmask, and gateway parameters. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted packet.

Do I need to act?

0.04% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.7/10 Medium

ADJACENT_NETWORK / LOW complexity

Affected Products (1)

Dsl-3782 Firmware

Affected Vendors

Dlink

References (2)

Broken Link https://github.com/2664521593/mycve/blob/main/BOF_in_D-Link_DSL-3782_5.pdf

/ 100

low-risk

Severity 19/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal