CNNVD-202602-1684 Information
CNNVD ID
CNNVD-202602-1684
Related CVE
- CNNVD Published: 2026-02-10
Description (Chinese)
D-Link DCS-931L是中国友讯(D-Link)公司的一个无线摄像头。 D-Link DCS-931L 1.13.0及之前版本存在操作系统命令注入漏洞,该漏洞源于对文件/goform/setSysAdmin中参数AdminID的操作可能导致os命令注入。
Description (English)
D-Link DCS-931L is a wireless camera of the Chinese company D-Link. The D-Link DCS-931L 1.1.3.0 and previous versions have an operational system command leak, which results from the operation of the AdminID parameter in file/goform/setSysAdmin that may result in an Os command injection.
Hazard Level
Medium
Vulnerability Type
操作系统命令注入
Affected Vendor
友讯
Published
2026-02-10
Last Modified
2026-02-24
References
https://github.com/cha0yang1/CVE/blob/main/DLinkRce.md https://vuldb.com/?ctiid.345007 https://www.dlink.com/ https://github.com/cha0yang1/CVE/blob/main/DLinkRce.md#poc https://vuldb.com/?submit.753398 https://vuldb.com/?id.345007 https://access.redhat.com/security/cve/cve-2026-2260
Share on: