VYPR
Unrated severityNVD Advisory· Published Feb 20, 2026· Updated Feb 24, 2026

D-Link DWR-M960 Filter Configuration Endpoint formFilter sub_424AFC stack-based overflow

CVE-2026-2856

Description

A vulnerability was found in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the function sub_424AFC of the file /boafrm/formFilter of the component Filter Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow. The attack may be launched remotely. The exploit has been made public and could be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Dlink/DWR-M960llm-fuzzy2 versions
    = 1.01.07+ 1 more
    • (no CPE)range: = 1.01.07
    • (no CPE)range: 1.01.07

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.

CVE-2026-2856 · VYPR