CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-4196

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This impacts the function cgi_recovery/cgi_backup_now/cgi_set_schedule/cgi_set_rsync_server of the file /cgi-bin/remote_backup.cgi. The manipulation leads to command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.8%

CVSS Severity

CVSS v3 Score 6.3

CVSS v2 Score 6.5

References

https://github.com/wudipjq/my_vuln/blob/main/D-Link8/vuln_98/98.md
https://github.com/wudipjq/my_vuln/blob/main/D-Link8/vuln_99/99.md
https://vuldb.com/?ctiid.351108
https://vuldb.com/?id.351108
https://vuldb.com/?submit.769855
https://vuldb.com/?submit.769856
https://vuldb.com/?submit.769857
https://vuldb.com/?submit.769858
https://www.dlink.com/

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-4196

Products

Pricing

Contact Us