Vendor CVEs
Dlink
All CVEs
1,843 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-70227 | 0.00 | — | 0.01 | Mar 10, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the nextPage parameter to goform/formLanguageChange. | |||
| CVE-2025-70251 | 0.00 | — | 0.01 | Mar 10, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the webPage parameter to goform/formWlanGuestSetup. | |||
| CVE-2025-70242 | 0.00 | — | 0.01 | Mar 10, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the webPage parameter to goform/formSetWanPPTP. | |||
| CVE-2025-70247 | 0.00 | — | 0.01 | Mar 10, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWizard1. | |||
| CVE-2025-70249 | 0.00 | — | 0.01 | Mar 10, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWizard2. | |||
| CVE-2025-70246 | 0.00 | — | 0.01 | Mar 10, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formVirtualServ. | |||
| CVE-2025-70244 | 0.00 | — | 0.01 | Mar 10, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the webPage parameter to goform/formWlanSetup. | |||
| CVE-2025-70238 | 0.00 | — | 0.01 | Mar 9, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard52. | |||
| CVE-2025-70243 | 0.00 | — | 0.01 | Mar 9, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard534. | |||
| CVE-2025-70250 | 0.00 | — | 0.00 | Mar 9, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formdumpeasysetup. | |||
| CVE-2025-70231 | 0.00 | — | 0.01 | Mar 5, 2026 | D-Link DIR-513 version 1.10 contains a critical-level vulnerability. When processing POST requests related to verification codes in /goform/formLogin, it enters /goform/getAuthCode but fails to filter the value of the FILECODE parameter, resulting in a path traversal… | |||
| CVE-2025-70229 | 0.00 | — | 0.01 | Mar 5, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSchedule. | |||
| CVE-2025-70233 | 0.00 | — | 0.01 | Mar 5, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetEnableWizard. | |||
| CVE-2025-70232 | 0.00 | — | 0.01 | Mar 5, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetMACFilter. | |||
| CVE-2025-70221 | 0.00 | — | 0.00 | Mar 4, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formLogin. | |||
| CVE-2025-70220 | 0.00 | — | 0.01 | Mar 4, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formAutoDetecWAN_wizard4. | |||
| CVE-2025-70218 | 0.00 | — | 0.01 | Mar 4, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via POST to the goform/formAdvFirewall component. | |||
| CVE-2025-70225 | 0.00 | — | 0.00 | Mar 4, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curtime parameter to the goform/formEasySetupWWConfig component | |||
| CVE-2025-70223 | 0.00 | — | 0.01 | Mar 4, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formAdvNetwork. | |||
| CVE-2025-46108 | 0.00 | — | 0.01 | Mar 4, 2026 | D-link Dir-513 A1FW110 is vulnerable to Buffer Overflow in the function formTcpipSetup. | |||
| CVE-2025-70222 | 0.00 | — | 0.00 | Mar 4, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formLogin,goform/getAuthCode. | |||
| CVE-2025-70219 | 0.00 | — | 0.00 | Mar 4, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the goform/formDeviceReboot. | |||
| CVE-2025-70226 | 0.00 | — | 0.00 | Mar 4, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formEasySetupWizard. | |||
| CVE-2026-3485 | 0.00 | — | 0.05 | Mar 3, 2026 | A flaw has been found in D-Link DIR-868L 110b03. This affects the function sub_1BF84 of the component SSDP Service. This manipulation of the argument ST causes os command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used.… | |||
| CVE-2025-70234 | 0.00 | — | 0.01 | Mar 3, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetQoS. | |||
| CVE-2025-70236 | 0.00 | — | 0.01 | Mar 3, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetDomainFilter. | |||
| CVE-2025-70239 | 0.00 | — | 0.01 | Mar 3, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard55. | |||
| CVE-2025-70240 | 0.00 | — | 0.01 | Mar 3, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard51. | |||
| CVE-2025-70237 | 0.00 | — | 0.01 | Mar 3, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetPortTr. | |||
| CVE-2025-70241 | 0.00 | — | 0.01 | Mar 3, 2026 | Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWANType_Wizard5. | |||
| CVE-2026-2962 | 0.00 | — | 0.03 | Feb 23, 2026 | A vulnerability was found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_460F30 of the file /boafrm/formDateReboot of the component Scheduled Reboot Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer… | |||
| CVE-2026-2961 | 0.00 | — | 0.03 | Feb 23, 2026 | A vulnerability has been found in D-Link DWR-M960 1.01.07. This affects the function sub_4196C4 of the file /boafrm/formVpnConfigSetup of the component VPN Configuration Endpoint. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack is… | |||
| CVE-2026-2960 | 0.00 | — | 0.01 | Feb 23, 2026 | A flaw has been found in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_468D64 of the file /boafrm/formDhcpv6s. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has… | |||
| CVE-2026-2959 | 0.00 | — | 0.01 | Feb 22, 2026 | A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the function sub_44E0F8 of the file /boafrm/formNewSchedule. Performing a manipulation of the argument url results in stack-based buffer overflow. Remote exploitation of the attack is… | |||
| CVE-2026-2958 | 0.00 | — | 0.01 | Feb 22, 2026 | A security vulnerability has been detected in D-Link DWR-M960 1.01.07. Affected is the function sub_457C5C of the file /boafrm/formWsc. Such manipulation of the argument save_apply leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been… | |||
| CVE-2026-2929 | 0.00 | — | 0.01 | Feb 22, 2026 | A vulnerability was determined in D-Link DWR-M960 1.01.07. Impacted is the function sub_453140 of the file /boafrm/formWlAc of the component Wireless Access Control Endpoint. This manipulation of the argument submit-url causes stack-based buffer overflow. Remote exploitation of… | |||
| CVE-2026-2928 | 0.00 | — | 0.01 | Feb 22, 2026 | A vulnerability was found in D-Link DWR-M960 1.01.07. This issue affects the function sub_452CCC of the file /boafrm/formWlEncrypt of the component WLAN Encryption Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow. The… | |||
| CVE-2026-2927 | 0.00 | — | 0.01 | Feb 22, 2026 | A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_462590 of the file /boafrm/formOpMode of the component Operation Mode Configuration Endpoint. The manipulation of the argument submit-url leads to stack-based buffer overflow.… | |||
| CVE-2026-2926 | 0.00 | — | 0.01 | Feb 22, 2026 | A flaw has been found in D-Link DWR-M960 1.01.07. This affects the function sub_4237AC of the file /boafrm/formLteSetup of the component LTE Configuration Endpoint. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be… | |||
| CVE-2026-2925 | 0.00 | — | 0.01 | Feb 22, 2026 | A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_42B5A0 of the file /boafrm/formBridgeVlan of the component Bridge VLAN Configuration Endpoint. Performing a manipulation of the argument submit-url results in stack-based buffer… | |||
| CVE-2026-2885 | 0.00 | — | 0.01 | Feb 21, 2026 | A security flaw has been discovered in D-Link DWR-M960 1.01.07. The impacted element is the function sub_469104 of the file /boafrm/formIpv6Setup. The manipulation of the argument submit-url results in stack-based buffer overflow. The attack may be performed from remote. The… | |||
| CVE-2026-2884 | 0.00 | — | 0.01 | Feb 21, 2026 | A vulnerability was identified in D-Link DWR-M960 1.01.07. The affected element is the function sub_41914C of the file /boafrm/formWanConfigSetup of the component WAN Interface Setting Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The… | |||
| CVE-2026-2883 | 0.00 | — | 0.01 | Feb 21, 2026 | A vulnerability was determined in D-Link DWR-M960 1.01.07. Impacted is the function sub_427D74 of the file /boafrm/formIpQoS. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has been… | |||
| CVE-2026-2882 | 0.00 | — | 0.01 | Feb 21, 2026 | A vulnerability was found in D-Link DWR-M960 1.01.07. This issue affects the function sub_46385C of the file /boafrm/formDosCfg. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. Remote exploitation of the attack is possible. The… | |||
| CVE-2026-2881 | 0.00 | — | 0.01 | Feb 21, 2026 | A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_425FF8 of the file /boafrm/formFirewallAdv of the component Advanced Firewall Configuration Endpoint. Such manipulation of the argument submit-url leads to stack-based buffer… | |||
| CVE-2026-2857 | 0.00 | — | 0.01 | Feb 20, 2026 | A vulnerability was determined in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_423E00 of the file /boafrm/formPortFw of the component Port Forwarding Configuration Endpoint. This manipulation of the argument submit-url causes stack-based buffer overflow.… | |||
| CVE-2026-2856 | 0.00 | — | 0.01 | Feb 20, 2026 | A vulnerability was found in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the function sub_424AFC of the file /boafrm/formFilter of the component Filter Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow. The… | |||
| CVE-2026-2855 | 0.00 | — | 0.01 | Feb 20, 2026 | A vulnerability has been found in D-Link DWR-M960 1.01.07. Affected is the function sub_4648F0 of the file /boafrm/formDdns of the component DDNS Settings Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack may be initiated… | |||
| CVE-2026-2854 | 0.00 | — | 0.01 | Feb 20, 2026 | A flaw has been found in D-Link DWR-M960 1.01.07. This impacts the function sub_4611CC of the file /boafrm/formNtp of the component NTP Configuration Endpoint. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be launched… | |||
| CVE-2026-2853 | 0.00 | — | 0.01 | Feb 20, 2026 | A vulnerability was detected in D-Link DWR-M960 1.01.07. This affects the function sub_462E14 of the file /boafrm/formSysLog of the component System Log Configuration Endpoint. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. The… |
- CVE-2025-70227Mar 10, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the nextPage parameter to goform/formLanguageChange.
- CVE-2025-70251Mar 10, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the webPage parameter to goform/formWlanGuestSetup.
- CVE-2025-70242Mar 10, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the webPage parameter to goform/formSetWanPPTP.
- CVE-2025-70247Mar 10, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWizard1.
- CVE-2025-70249Mar 10, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWizard2.
- CVE-2025-70246Mar 10, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formVirtualServ.
- CVE-2025-70244Mar 10, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the webPage parameter to goform/formWlanSetup.
- CVE-2025-70238Mar 9, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard52.
- CVE-2025-70243Mar 9, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard534.
- CVE-2025-70250Mar 9, 2026risk 0.00cvss —epss 0.00
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formdumpeasysetup.
- CVE-2025-70231Mar 5, 2026risk 0.00cvss —epss 0.01
D-Link DIR-513 version 1.10 contains a critical-level vulnerability. When processing POST requests related to verification codes in /goform/formLogin, it enters /goform/getAuthCode but fails to filter the value of the FILECODE parameter, resulting in a path traversal…
- CVE-2025-70229Mar 5, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSchedule.
- CVE-2025-70233Mar 5, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetEnableWizard.
- CVE-2025-70232Mar 5, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetMACFilter.
- CVE-2025-70221Mar 4, 2026risk 0.00cvss —epss 0.00
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formLogin.
- CVE-2025-70220Mar 4, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formAutoDetecWAN_wizard4.
- CVE-2025-70218Mar 4, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via POST to the goform/formAdvFirewall component.
- CVE-2025-70225Mar 4, 2026risk 0.00cvss —epss 0.00
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curtime parameter to the goform/formEasySetupWWConfig component
- CVE-2025-70223Mar 4, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formAdvNetwork.
- CVE-2025-46108Mar 4, 2026risk 0.00cvss —epss 0.01
D-link Dir-513 A1FW110 is vulnerable to Buffer Overflow in the function formTcpipSetup.
- CVE-2025-70222Mar 4, 2026risk 0.00cvss —epss 0.00
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formLogin,goform/getAuthCode.
- CVE-2025-70219Mar 4, 2026risk 0.00cvss —epss 0.00
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the goform/formDeviceReboot.
- CVE-2025-70226Mar 4, 2026risk 0.00cvss —epss 0.00
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formEasySetupWizard.
- CVE-2026-3485Mar 3, 2026risk 0.00cvss —epss 0.05
A flaw has been found in D-Link DIR-868L 110b03. This affects the function sub_1BF84 of the component SSDP Service. This manipulation of the argument ST causes os command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used.…
- CVE-2025-70234Mar 3, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetQoS.
- CVE-2025-70236Mar 3, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetDomainFilter.
- CVE-2025-70239Mar 3, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard55.
- CVE-2025-70240Mar 3, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard51.
- CVE-2025-70237Mar 3, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetPortTr.
- CVE-2025-70241Mar 3, 2026risk 0.00cvss —epss 0.01
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWANType_Wizard5.
- CVE-2026-2962Feb 23, 2026risk 0.00cvss —epss 0.03
A vulnerability was found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_460F30 of the file /boafrm/formDateReboot of the component Scheduled Reboot Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer…
- CVE-2026-2961Feb 23, 2026risk 0.00cvss —epss 0.03
A vulnerability has been found in D-Link DWR-M960 1.01.07. This affects the function sub_4196C4 of the file /boafrm/formVpnConfigSetup of the component VPN Configuration Endpoint. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack is…
- CVE-2026-2960Feb 23, 2026risk 0.00cvss —epss 0.01
A flaw has been found in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_468D64 of the file /boafrm/formDhcpv6s. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has…
- CVE-2026-2959Feb 22, 2026risk 0.00cvss —epss 0.01
A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the function sub_44E0F8 of the file /boafrm/formNewSchedule. Performing a manipulation of the argument url results in stack-based buffer overflow. Remote exploitation of the attack is…
- CVE-2026-2958Feb 22, 2026risk 0.00cvss —epss 0.01
A security vulnerability has been detected in D-Link DWR-M960 1.01.07. Affected is the function sub_457C5C of the file /boafrm/formWsc. Such manipulation of the argument save_apply leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been…
- CVE-2026-2929Feb 22, 2026risk 0.00cvss —epss 0.01
A vulnerability was determined in D-Link DWR-M960 1.01.07. Impacted is the function sub_453140 of the file /boafrm/formWlAc of the component Wireless Access Control Endpoint. This manipulation of the argument submit-url causes stack-based buffer overflow. Remote exploitation of…
- CVE-2026-2928Feb 22, 2026risk 0.00cvss —epss 0.01
A vulnerability was found in D-Link DWR-M960 1.01.07. This issue affects the function sub_452CCC of the file /boafrm/formWlEncrypt of the component WLAN Encryption Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow. The…
- CVE-2026-2927Feb 22, 2026risk 0.00cvss —epss 0.01
A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_462590 of the file /boafrm/formOpMode of the component Operation Mode Configuration Endpoint. The manipulation of the argument submit-url leads to stack-based buffer overflow.…
- CVE-2026-2926Feb 22, 2026risk 0.00cvss —epss 0.01
A flaw has been found in D-Link DWR-M960 1.01.07. This affects the function sub_4237AC of the file /boafrm/formLteSetup of the component LTE Configuration Endpoint. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be…
- CVE-2026-2925Feb 22, 2026risk 0.00cvss —epss 0.01
A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_42B5A0 of the file /boafrm/formBridgeVlan of the component Bridge VLAN Configuration Endpoint. Performing a manipulation of the argument submit-url results in stack-based buffer…
- CVE-2026-2885Feb 21, 2026risk 0.00cvss —epss 0.01
A security flaw has been discovered in D-Link DWR-M960 1.01.07. The impacted element is the function sub_469104 of the file /boafrm/formIpv6Setup. The manipulation of the argument submit-url results in stack-based buffer overflow. The attack may be performed from remote. The…
- CVE-2026-2884Feb 21, 2026risk 0.00cvss —epss 0.01
A vulnerability was identified in D-Link DWR-M960 1.01.07. The affected element is the function sub_41914C of the file /boafrm/formWanConfigSetup of the component WAN Interface Setting Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The…
- CVE-2026-2883Feb 21, 2026risk 0.00cvss —epss 0.01
A vulnerability was determined in D-Link DWR-M960 1.01.07. Impacted is the function sub_427D74 of the file /boafrm/formIpQoS. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has been…
- CVE-2026-2882Feb 21, 2026risk 0.00cvss —epss 0.01
A vulnerability was found in D-Link DWR-M960 1.01.07. This issue affects the function sub_46385C of the file /boafrm/formDosCfg. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. Remote exploitation of the attack is possible. The…
- CVE-2026-2881Feb 21, 2026risk 0.00cvss —epss 0.01
A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_425FF8 of the file /boafrm/formFirewallAdv of the component Advanced Firewall Configuration Endpoint. Such manipulation of the argument submit-url leads to stack-based buffer…
- CVE-2026-2857Feb 20, 2026risk 0.00cvss —epss 0.01
A vulnerability was determined in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_423E00 of the file /boafrm/formPortFw of the component Port Forwarding Configuration Endpoint. This manipulation of the argument submit-url causes stack-based buffer overflow.…
- CVE-2026-2856Feb 20, 2026risk 0.00cvss —epss 0.01
A vulnerability was found in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the function sub_424AFC of the file /boafrm/formFilter of the component Filter Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow. The…
- CVE-2026-2855Feb 20, 2026risk 0.00cvss —epss 0.01
A vulnerability has been found in D-Link DWR-M960 1.01.07. Affected is the function sub_4648F0 of the file /boafrm/formDdns of the component DDNS Settings Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack may be initiated…
- CVE-2026-2854Feb 20, 2026risk 0.00cvss —epss 0.01
A flaw has been found in D-Link DWR-M960 1.01.07. This impacts the function sub_4611CC of the file /boafrm/formNtp of the component NTP Configuration Endpoint. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be launched…
- CVE-2026-2853Feb 20, 2026risk 0.00cvss —epss 0.01
A vulnerability was detected in D-Link DWR-M960 1.01.07. This affects the function sub_462E14 of the file /boafrm/formSysLog of the component System Log Configuration Endpoint. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. The…
Page 14 of 37