PT-2026-6969 · D Link · D-Link Dir-823G
942384053
·
Published
2026-01-27
·
Updated
2026-03-09
·
CVE-2026-2142
CVSS v2.0
9.0
High
| Vector | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
D-Link DIR-823X version 250416
Description
A flaw exists in the D-Link DIR-823X firmware. This issue affects the
sub 420688 function within the /goform/set qos file, potentially allowing for operating system command injection. The attack can be carried out remotely. The exploit code has been publicly released.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
OS Command Injection
Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
D-Link Dir-823G