CVE-2026-2169

Medium CVSS: 5.3

A vulnerability has been found in D-Link DWR-M921 1.1.50. This impacts an unknown function of the file /boafrm/formLtefotaUpgradeFibocom. Such manipulation of the argument fota_url leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Vendor

Dlink

Product

Dwr-m921 Firmware

CWE

CWE-74

Yayın Tarihi

2026-02-08 18:15:48

Güncelleme

2026-02-11 18:41:35

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Dwr-m921 Firmware MEDIUM Dlink 2026

Referanslar

https://github.com/LX-66-LX/cve-new/issues/3 https://vuldb.com/?ctiid.344871 https://vuldb.com/?id.344871 https://vuldb.com/?submit.748930 https://www.dlink.com/

Benzer Kayıtlar

High

CVE-2026-5214

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-32…

Medium

CVE-2026-5215

A vulnerability was identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…

High

CVE-2026-5213

A vulnerability was determined in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…

High

CVE-2026-5212

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…

High

CVE-2026-5211

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, D…

High

CVE-2026-5024

A vulnerability was found in D-Link DIR-513 1.10. This issue affects the function formSetEmail of the file /goform/formS…