CVE-2026-5212 | D-Link DNS-1550-04 up to 20260205 /cgi-bin/webdav_mgr.cgi Webdav_Upload_File f_file stack-based overflow

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. It has been rated as critical. This issue affects the function Webdav_Upload_File of the file /cgi-bin/webdav_mgr.cgi. The manipulation of the argument f_file leads to stack-based buffer overflow.

This vulnerability is uniquely identified as CVE-2026-5212. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2026-5212 | D-Link DNS-1550-04 up to 20260205 /cgi-bin/webdav_mgr.cgi Webdav_Upload_File f_file stack-based overflow

Post correlati

CVE-2026-0705 | Acronis Cloud Manager 6.2.23089.203/6.2.24135.272 on Windows default permission

CVE-2020-26312 | dotmesh-io dotmesh up to 0.8.1 out-of-bounds write (GHSL-2020-254)

CVE-2024-36948 | Linux Kernel up to 6.8.9 xe_migrate buffer overflow (e23a904dfeb5/9cb46b31f3d0)

CVE-2025-12776 | Commvault WebConsole up to 11.32.0/11.36.0/11.40.0/11.42.0 Report Builder cross site scripting