CNNVD-202602-1222 Information

Feb 08, 2026 cve

CNNVD ID

CNNVD-202602-1222

CVE-2026-2142

  • CNNVD Published: 2026-02-08

Description (Chinese)

D-Link DIR-823X是中国友讯(D-Link)公司的一款无线路由器。 D-Link DIR-823X 250416版本存在操作系统命令注入漏洞,该漏洞源于对文件/goform/set_qos内函数sub_420688的错误操作,可能导致os命令注入。

Description (English)

D-Link DIR-823X is a wireless router of D-Link. Version D-Link DIR-823X 250416 has an operational system command-injecting loophole that results from an error in the in-file/goform/set qos function sub 420688, which may result in an Os command-injection.

Hazard Level

Medium

Vulnerability Type

操作系统命令注入

Affected Vendor

友讯

Published

2026-02-08

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.344777 https://github.com/master-abc/cve/issues/29 https://www.dlink.com/ https://vuldb.com/?submit.747428 https://vuldb.com/?id.344777 https://access.redhat.com/security/cve/cve-2026-2142

Share on: