Security Advisory

CVE-2026-2120

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-08 00:32:09

Last updated 2026-02-23 09:36:13

Assigner VulDB

State PUBLISHED

Description

A vulnerability was identified in D-Link DIR-823X 250416. This affects an unknown function of the file /goform/set_server_settings of the component Configuration Parameter Handler. The manipulation of the argument terminal_addr/server_ip/server_port leads to os command injection. The attack may be initiated remotely. The exploit is publicly available and might be used.

← Browse all CVEs View on cve.org ↗