CVE-2026-2962 | D-Link DWR-M960 1.01.07 Scheduled Reboot Configuration Endpoint /boafrm/formDateReboot sub_460F30 submit-url stack-based overflow

Inserito da Angelo Barbosa | Feb 22, 2026 | CVE

A vulnerability, which was classified as critical, was found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_460F30 of the file /boafrm/formDateReboot of the component Scheduled Reboot Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow.

This vulnerability was named CVE-2026-2962. The attack may be performed from remote. In addition, an exploit is available.

CVE-2026-2962 | D-Link DWR-M960 1.01.07 Scheduled Reboot Configuration Endpoint /boafrm/formDateReboot sub_460F30 submit-url stack-based overflow

Post correlati

CVE-2025-1795 | Python CPython up to 3.11.8/3.12.2/3.13.0a4 Address Header information disclosure (Issue 100884)

CVE-2024-5344 | Plus Addons for Elementor Page Builder Plugin up to 5.5.6 on WordPress WP Login/Register Widget cross site scripting

CVE-2024-54763 | ipTIME A2004 12.17.0 /login/hostinfo.cgi information disclosure

CVE-2025-31206 | Apple macOS Web type confusion