CVE-2026-4213 | D-Link DNS-1550-04 up to 20260205 /cgi-bin/gui_mgr.cgi cgi_myfavorite_del_user/cgi_myfavorite_verify stack-based overflow

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205 and classified as critical. This vulnerability affects the function cgi_myfavorite_del_user/cgi_myfavorite_verify of the file /cgi-bin/gui_mgr.cgi. Performing a manipulation results in stack-based buffer overflow.

This vulnerability was named CVE-2026-4213. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2026-4213 | D-Link DNS-1550-04 up to 20260205 /cgi-bin/gui_mgr.cgi cgi_myfavorite_del_user/cgi_myfavorite_verify stack-based overflow

Post correlati

CVE-2024-57273 | Netgate pfSense CE up to 2.7.x Automatic Configuration Backup Reason cross site scripting

CVE-2023-54138 | Linux Kernel up to 5.15.111/6.1.28/6.2.15/6.3.2 null pointer dereference

CVE-2024-47966 | Delta Electronics CNCSoft-G2 2.1.0.10 uninitialized variable (icsa-24-284-21)

CVE-2026-2698 | Tenable Security Center up to 6.7.x authorization