Security Advisory

CVE-2026-2155

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-08 14:02:08

Last updated 2026-02-23 09:42:37

Assigner VulDB

State PUBLISHED

Description

A security flaw has been discovered in D-Link DIR-823X 250416. The affected element is the function sub_4208A0 of the file /goform/set_dmz of the component Configuration Handler. The manipulation of the argument dmz_host/dmz_enable results in os command injection. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks.

← Browse all CVEs View on cve.org ↗