Summary
| Parameter | Value |
|---|---|
| CVE ID | CVE-2026-7248 |
| Alert Source | GitHub Advisory - Critical Vulnerability |
| CVE Publication Year | 2026 |
| Date Published | 2026-04-28 |
| Vendor | D-Link |
| Product | DI-8100 |
| CVSS Score | 9.8 (critical) |
| EPSS Score | No data |
| CISA KEV | No |
| Ransomware | Not confirmed |
Vulnerability Description
A vulnerability was found in D-Link DI-8100 16.07.26A1. This affects the function tgfile_htm of the file tgfile.htm in the CGI Endpoint component. The manipulation of the argument fn results in buffer overflow. The attack can be executed remotely. The exploit has been made public and could be used.
Required Actions
Check D-Link’s support site for an updated firmware addressing this issue and apply it without delay. Until a patch is available, restrict access to the router’s administration interface to trusted internal IP addresses only and disable remote (WAN) management. Monitor logs for unusual HTTP requests targeting /tgfile.htm.
Who Is Affected?
This vulnerability affects DI-8100 by D-Link. Check whether your organization uses this router and update the firmware to a patched version, or disconnect the device from the public internet immediately.
Sources
Need help securing your systems? nFlo team offers vulnerability management and 24/7 SOC services. Contact us.
