CVE-2026-5212

Name of the Vulnerable Software and Affected Versions D-Link DNS-120 D-Link DNR-202L D-Link DNS-315L D-Link DNS-320 D-Link DNS-320L D-Link DNS-320LW D-Link DNS-321 D-Link DNR-322L D-Link DNS-323 D-Link DNS-325 D-Link DNS-326 D-Link DNS-327L D-Link DNR-326 D-Link DNS-340L D-Link DNS-343 D-Link DNS-345 D-Link DNS-726-4 D-Link DNS-1100-4 D-Link DNS-1200-05 D-Link DNS-1550-04 versions prior to 20260205

Description A stack-based buffer overflow issue exists in the Webdav Upload File function located in the /cgi-bin/webdav mgr.cgi file. The issue is triggered by manipulating the f file argument. This allows for remote exploitation. The exploit has been publicly disclosed.

Recommendations Update devices to the latest firmware version available.