HomeVulnerabilitiesCVE-2026-7068
Disclosed

CVE-2026-7068

A vulnerability was identified in D-Link DIR-825 3.00b32. This affects the function NMBD_process of the file sserver.c of the component nmbd. Such manipulation leads to buffer overflow. The attack can only be initiated within the local network. The exploit is publicly available and might be used. This vulnerability only affects products that are no longer supported by the maintainer.

Share this vulnerability:

Exploitation Probability (EPSS)

Low Priority
0.14%

The Exploit Prediction Scoring System (EPSS) uses machine learning to estimate the probability that a vulnerability will be exploited in the wild within the next 30 days.

0% (Theoretical)100% (Certainty)

7-Day Exploitation Trend

Vulnerability Timeline

2 events
Apr 27, 2026
Vulnerability Disclosed
Published to component-level vulnerability database.
Apr 30, 2026
Last Updated
Record updated with new analysis or tags.

Threat Actor Attribution

PREMIUM INTEL
Associated Groups:Lazarus Group, APT28
Ransomware Campaigns:LockBit 3.0, BlackCat
IoCs (Indicators):14 IPs, 3 Hashes

Remediation & Mitigation

SOLUTION

Official patches and mitigation steps are available for this vulnerability.

# Update Command
apt-get update && apt-get upgrade -y specific-package
# Verify installation
dpkg -l | grep package-name

Affected Products

2 Total
dlink/dir-825_firmware3.00b32
dlink/dir-825-

References

https://tzh00203.notion.site/D-Link-DIR-825-nmbd-NetBIOS-Name-Service-Stack-Based-Buffer-Overflow-337b5c52018a80cea1e8d56689928114Notion
ExploitMitigationThird Party Advisory
https://vuldb.com/submit/798646Vuldb
Third Party AdvisoryVDB Entry
https://vuldb.com/vuln/359643Vuldb
Third Party AdvisoryVDB Entry
https://vuldb.com/vuln/359643/ctiVuldb
Permissions RequiredVDB Entry

Am I Vulnerable?

Check your domain or package.json for CVE-2026-7068 exposure.

Share This Page

Help others discover this vulnerability information

Vulnerability Details

CVSS Base Score
8.8/ 10
Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Published Date
Apr 27, 2026
Last Modified
Apr 30, 2026
Need API Access?

Integrate this data into your SOAR platform.

View Plans →
Need Manual Validation?

Automated scanners flag false positives. Get a manual pentest validation for this CVE.