Loading market data...
← Back to CVE feed

CVE-2026-11341

MEDIUM CVSS 6.3 View on NVD ↗

Description

A flaw has been found in D-Link DWR-M920 up to 1.1.50. The impacted element is the function sub_412DA0 of the file /boafrm/formIMEISetup. This manipulation of the argument IMEI_value causes os command injection. The attack can be initiated remotely. The exploit has been published and may be used.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Published: Jun 05, 2026 18:17 UTC Modified: Jun 05, 2026 19:02 UTC