Vulnerability Details CVE-2026-1685
A vulnerability was identified in D-Link DIR-823X 250416. This vulnerability affects the function sub_40AC74 of the component Login. Such manipulation leads to improper restriction of excessive authentication attempts. The attack may be performed from remote. This attack is characterized by high complexity. It is stated that the exploitability is difficult. The exploit is publicly available and might be used.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.0%
CVSS Severity
CVSS v3 Score 3.7
CVSS v2 Score 2.6
References
Products affected by CVE-2026-1685
-
cpe:2.3:h:dlink:dir-823x:-
-
cpe:2.3:o:dlink:dir-823x_firmware:250416