CVE-2026-4193

Name of the Vulnerable Software and Affected Versions D-Link DIR-823G version 1.0.2B05

Description A security issue has been identified in the D-Link DIR-823G. The problem stems from improper access controls within the goahead component, specifically related to the following functions: GetDDNSSettings, GetDeviceDomainName, GetDeviceSettings, GetDMZSettings, GetFirewallSettings, GetGuestNetworkSettings, GetLanWanConflictInfo, GetLocalMacAddress, GetNetworkSettings, GetQoSSettings, GetRouterInformationSettings, GetRouterLanSettings, GetWanSettings, SetAccessCtlList, SetAccessCtlSwitch, SetDeviceSettings, SetGuestWLanSettings, SetIPv4FirewallSettings, SetNetworkSettings, SetNetworkTomographySettings, SetNTPServerSettings, SetRouterLanSettings, SetStaticClientInfo, SetStaticRouteSettings, SetWLanRadioSecurity, SetWPSSettings, and UpdateClientInfo. This allows for remote manipulation. The exploit for this issue has been made public. It is important to note that this vulnerability affects products that are no longer supported by the vendor.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.