CNNVD-202602-1347 Information

CNNVD ID

CNNVD-202602-1347

Related CVE

CVE-2026-2227

• CNNVD Published: 2026-02-09

Description (Chinese)

D-Link DCS-931L是中国友讯（D-Link）公司的一个无线摄像头。 D-Link DCS-931L 1.13.0及之前版本存在命令注入漏洞，该漏洞源于对文件/setSystemAdmin中参数AdminID的错误操作，可能导致命令注入攻击。

Description (English)

D-Link DCS-931L is a wireless camera of the Chinese company D-Link. D-Link DCS-931L 1.1.3.0 and previous versions contain a command-injecting loophole, which stems from the wrong operation of AdminID, the parameter in file/setSystemAdmin, which may lead to an order-injection attack.

Hazard Level

High

Vulnerability Type

命令注入

Affected Vendor

友讯

Published

2026-02-09

Last Modified

2026-02-24

References

https://github.com/cha0yang1/CVE/blob/main/D-Link%20DCS931L1.md https://vuldb.com/?id.344944 https://vuldb.com/?submit.753450 https://www.dlink.com/ https://vuldb.com/?ctiid.344944 https://access.redhat.com/security/cve/cve-2026-2227