CVE-2026-4205 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-…
Medium CVSS: 5.3

CVE-2026-4205

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. The impacted element is the function cgi_refresh_db/FTP_Server_BlockIP_Add/FTP_Server_BlockIP_Del of the file /cgi-bin/app_mgr.cgi. Such manipulation leads to command injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.
Vendor
Dlink
Product
Dnr-202l Firmware
CWE
CWE-74
Yayın Tarihi
2026-03-16 14:20:05
Güncelleme
2026-03-19 14:24:13
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-74 Dnr-202l Firmware MEDIUM Dlink 2026

Referanslar

https://github.com/wudipjq/my_vuln/blob/main/D-Link8/vuln_131/131.md https://github.com/wudipjq/my_vuln/blob/main/D-Link8/vuln_132/132.md https://vuldb.com/?ctiid.351117 https://vuldb.com/?id.351117 https://vuldb.com/?submit.770410 https://vuldb.com/?submit.770411 https://vuldb.com/?submit.770412 https://www.dlink.com/