CVE-2026-2928 | D-Link DWR-M960 1.01.07 WLAN Encryption Configuration Endpoint /boafrm/formWlEncrypt sub_452CCC submit-url stack-based overflow

Inserito da Angelo Barbosa | Feb 21, 2026 | CVE

A vulnerability was found in D-Link DWR-M960 1.01.07 and classified as critical. This issue affects the function sub_452CCC of the file /boafrm/formWlEncrypt of the component WLAN Encryption Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow.

This vulnerability is cataloged as CVE-2026-2928. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-2928 | D-Link DWR-M960 1.01.07 WLAN Encryption Configuration Endpoint /boafrm/formWlEncrypt sub_452CCC submit-url stack-based overflow

Post correlati

CVE-2024-5108 | Campcodes Complete Web-Based School Management System 1.0 student_payment_details4.php index sql injection

CVE-2024-29216 | Sangoma cg6kwin2k.sys up to 2.1.7.0 IOCTL Request access control

CVE-2024-25706 | Esri Portal for ArcGIS up to 11.0 cross site scripting

CVE-2024-47080 | matrix-org matrix-js-sdk up to 34.8.0 MatrixClient.sendSharedHistoryKeys information disclosure (GHSA-4jf8-g8wp-cx7c)