1. Home
  2. CVE Database
  3. CVE-2025-44084
CRITICAL · 9.8

CVE-2025-44084

D-link DI-8100 16.07.26A1 is vulnerable to Command Injection. An attacker can exploit this vulnerability by crafting specific HTTP requests, triggering the command execution flaw and gaining the highe...

Vulnerability Description

D-link DI-8100 16.07.26A1 is vulnerable to Command Injection. An attacker can exploit this vulnerability by crafting specific HTTP requests, triggering the command execution flaw and gaining the highest privilege shell access to the firmware system.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
DlinkDi-8100G Firmware16.07.26a1
DlinkDi-8100-

Related Weaknesses (CWE)

CWE-77

References

FAQ

What is CVE-2025-44084?

CVE-2025-44084 is a vulnerability with a CVSS score of 9.8 (CRITICAL). D-link DI-8100 16.07.26A1 is vulnerable to Command Injection. An attacker can exploit this vulnerability by crafting specific HTTP requests, triggering the command execution flaw and gaining the highe...

How severe is CVE-2025-44084?

CVE-2025-44084 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2025-44084?

Check the references section above for vendor advisories and patch information. Affected products include: Dlink Di-8100G Firmware, Dlink Di-8100.