CVE-2026-2227 | D-Link DCS-931L up to 1.13.0 /setSystemAdmin doSystem AdminID command injection

Full Article URL: https://vuldb.com/?id.344944
Textarea URL (this page): <a href="https://textarea.nl/i/eNrLKCkpKLbS1y8rzUlJ0kvOz9W3z0zRMzYxsTQxAQCQTAj7_2026-02-08">https://textarea.nl/i/eNrLKCkpKLbS1y8rzUlJ0kvOz9W3z0zRMzYxsTQxAQCQTAj7_2026-02-08
Source: https://vuldb.com/?rss.recent
Vuldb: https://vuldb.com
Publication date: 2026-02-08 17:17:16
Last retrieval: 2026-02-08 20:46:19.827664

17:17 - 08 Feb 2026

vuldb.com

A vulnerability marked as critical has been reported in D-Link DCS-931L up to 1.13.0. Impacted is the function doSystem of the file /setSystemAdmin. Performing a manipulation of the argument AdminID results in command injection. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability was named CVE-2026-2227. The attack may be initiated remotely. In addition, an exploit is available.

https://vuldb.com/?id.344944

Article info: