CVE-2026-2227

A vulnerability was found in D-Link DCS-931L up to 1.13.0. Impacted is the function doSystem of the file /setSystemAdmin. Performing a manipulation of the argument AdminID results in command injection. The attack may be initiated remotely. The exploit has been made public and could be used. This vulnerability only affects products that are no longer supported by the maintainer.

CVSS v3 4.7 MEDIUM
CVSS v2.0 5.8 MEDIUM

4.7^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.2 / Impact : 3.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

5.8^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:M/C:P/I:P/A:P

Exploitability : 6.4 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication MULTIPLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://github.com/cha0yang1/CVE/blob/main/D-Link%20DCS931L1.md	Exploit Third Party Advisory
https://vuldb.com/?ctiid.344944	Permissions Required VDB Entry
https://vuldb.com/?id.344944	Third Party Advisory VDB Entry
https://vuldb.com/?submit.753450	Third Party Advisory VDB Entry
https://vuldb.com/?submit.753980
https://www.dlink.com/	Product

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:dlink:dcs-931l_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dcs-931l:-:*:*:*:*:*:*:*

History

23 Feb 2026, 11:16

Type	Values Removed	Values Added
References		() https://vuldb.com/?submit.753980 -
Summary		(es) Se encontró una vulnerabilidad en D-Link DCS-931L hasta la versión 1.13.0. La función impactada es doSystem del archivo /setSystemAdmin. Realizar una manipulación del argumento AdminID resulta en inyección de comandos. El ataque puede iniciarse de forma remota. El exploit se ha hecho público y podría usarse. Esta vulnerabilidad solo afecta a productos que ya no son compatibles con el mantenedor.

10 Feb 2026, 13:58

Type	Values Removed	Values Added
References	~~() https://github.com/cha0yang1/CVE/blob/main/D-Link%20DCS931L1.md -~~	() https://github.com/cha0yang1/CVE/blob/main/D-Link%20DCS931L1.md - Exploit, Third Party Advisory
References	~~() https://vuldb.com/?ctiid.344944 -~~	() https://vuldb.com/?ctiid.344944 - Permissions Required, VDB Entry
References	~~() https://vuldb.com/?id.344944 -~~	() https://vuldb.com/?id.344944 - Third Party Advisory, VDB Entry
References	~~() https://vuldb.com/?submit.753450 -~~	() https://vuldb.com/?submit.753450 - Third Party Advisory, VDB Entry
References	~~() https://www.dlink.com/ -~~	() https://www.dlink.com/ - Product
First Time		Dlink dcs-931l Firmware Dlink Dlink dcs-931l
CPE		cpe:2.3:h:dlink:dcs-931l:-:::::::* cpe:2.3:o:dlink:dcs-931l_firmware::::::::

09 Feb 2026, 10:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-02-09 10:15

Updated : 2026-02-23 11:16

NVD link : CVE-2026-2227

Mitre link : CVE-2026-2227

CVE.ORG link : CVE-2026-2227

JSON object : View

Products Affected

dlink

dcs-931l
dcs-931l_firmware

CWE

CWE-74

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')

4.7 /10