D-Link Dwr-M960 vulnerabilities

CVE-2026-2961 [HIGH] CWE-119 CVE-2026-2961: A vulnerability has been found in D-Link DWR-M960 1.01.07. This affects the function sub_4196C4 of t A vulnerability has been found in D-Link DWR-M960 1.01.07. This affects the function sub_4196C4 of the file /boafrm/formVpnConfigSetup of the component VPN Configuration Endpoint. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been disclosed to the publ

CVE-2026-2962 [HIGH] CWE-119 CVE-2026-2962: A vulnerability was found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_46 A vulnerability was found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_460F30 of the file /boafrm/formDateReboot of the component Scheduled Reboot Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been made public

CVE-2026-2958 [HIGH] CWE-119 CVE-2026-2958: A security vulnerability has been detected in D-Link DWR-M960 1.01.07. Affected is the function sub_ A security vulnerability has been detected in D-Link DWR-M960 1.01.07. Affected is the function sub_457C5C of the file /boafrm/formWsc. Such manipulation of the argument save_apply leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

CVE-2026-2959 [HIGH] CWE-119 CVE-2026-2959: A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the funct A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the function sub_44E0F8 of the file /boafrm/formNewSchedule. Performing a manipulation of the argument url results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit is now public and may be used.

CVE-2026-2960 [HIGH] CWE-119 CVE-2026-2960: A flaw has been found in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_468D64 A flaw has been found in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_468D64 of the file /boafrm/formDhcpv6s. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has been published and may be used.

CVE-2026-2927 [HIGH] CWE-119 CVE-2026-2927: A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function s A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_462590 of the file /boafrm/formOpMode of the component Operation Mode Configuration Endpoint. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the

CVE-2026-2925 [HIGH] CWE-119 CVE-2026-2925: A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_ A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_42B5A0 of the file /boafrm/formBridgeVlan of the component Bridge VLAN Configuration Endpoint. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. The attack can be initiated remotely. The exploit is now public and

CVE-2026-2926 [HIGH] CWE-119 CVE-2026-2926: A flaw has been found in D-Link DWR-M960 1.01.07. This affects the function sub_4237AC of the file / A flaw has been found in D-Link DWR-M960 1.01.07. This affects the function sub_4237AC of the file /boafrm/formLteSetup of the component LTE Configuration Endpoint. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been published and may be used.

CVE-2026-2929 [HIGH] CWE-119 CVE-2026-2929: A vulnerability was determined in D-Link DWR-M960 1.01.07. Impacted is the function sub_453140 of th A vulnerability was determined in D-Link DWR-M960 1.01.07. Impacted is the function sub_453140 of the file /boafrm/formWlAc of the component Wireless Access Control Endpoint. This manipulation of the argument submit-url causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be u

CVE-2026-2928 [HIGH] CWE-119 CVE-2026-2928: A vulnerability was found in D-Link DWR-M960 1.01.07. This issue affects the function sub_452CCC of A vulnerability was found in D-Link DWR-M960 1.01.07. This issue affects the function sub_452CCC of the file /boafrm/formWlEncrypt of the component WLAN Encryption Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow. The attack may be launched remotely. The exploit has been made public and could be u

CVE-2026-2882 [HIGH] CWE-119 CVE-2026-2882: A vulnerability was found in D-Link DWR-M960 1.01.07. This issue affects the function sub_46385C of A vulnerability was found in D-Link DWR-M960 1.01.07. This issue affects the function sub_46385C of the file /boafrm/formDosCfg. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been made public and could be used.

CVE-2026-2884 [HIGH] CWE-119 CVE-2026-2884: A vulnerability was identified in D-Link DWR-M960 1.01.07. The affected element is the function sub_ A vulnerability was identified in D-Link DWR-M960 1.01.07. The affected element is the function sub_41914C of the file /boafrm/formWanConfigSetup of the component WAN Interface Setting Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit is publicly avai

CVE-2026-2883 [HIGH] CWE-119 CVE-2026-2883: A vulnerability was determined in D-Link DWR-M960 1.01.07. Impacted is the function sub_427D74 of th A vulnerability was determined in D-Link DWR-M960 1.01.07. Impacted is the function sub_427D74 of the file /boafrm/formIpQoS. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has been publicly disclosed and may be utilized.

CVE-2026-2881 [HIGH] CWE-119 CVE-2026-2881: A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function s A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_425FF8 of the file /boafrm/formFirewallAdv of the component Advanced Firewall Configuration Endpoint. Such manipulation of the argument submit-url leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed

CVE-2026-2885 [HIGH] CWE-119 CVE-2026-2885: A security flaw has been discovered in D-Link DWR-M960 1.01.07. The impacted element is the function A security flaw has been discovered in D-Link DWR-M960 1.01.07. The impacted element is the function sub_469104 of the file /boafrm/formIpv6Setup. The manipulation of the argument submit-url results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks.

CVE-2026-2856 [HIGH] CWE-119 CVE-2026-2856: A vulnerability was found in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the function A vulnerability was found in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the function sub_424AFC of the file /boafrm/formFilter of the component Filter Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow. The attack may be launched remotely. The exploit has been made public and could

CVE-2026-2855 [HIGH] CWE-119 CVE-2026-2855: A vulnerability has been found in D-Link DWR-M960 1.01.07. Affected is the function sub_4648F0 of th A vulnerability has been found in D-Link DWR-M960 1.01.07. Affected is the function sub_4648F0 of the file /boafrm/formDdns of the component DDNS Settings Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CVE-2026-2853 [HIGH] CWE-119 CVE-2026-2853: A vulnerability was detected in D-Link DWR-M960 1.01.07. This affects the function sub_462E14 of the A vulnerability was detected in D-Link DWR-M960 1.01.07. This affects the function sub_462E14 of the file /boafrm/formSysLog of the component System Log Configuration Endpoint. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. The attack can be initiated remotely. The exploit is now public and may be used.

CVE-2026-2857 [HIGH] CWE-119 CVE-2026-2857: A vulnerability was determined in D-Link DWR-M960 1.01.07. Affected by this issue is the function su A vulnerability was determined in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_423E00 of the file /boafrm/formPortFw of the component Port Forwarding Configuration Endpoint. This manipulation of the argument submit-url causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been publicly

CVE-2026-2854 [HIGH] CWE-119 CVE-2026-2854: A flaw has been found in D-Link DWR-M960 1.01.07. This impacts the function sub_4611CC of the file / A flaw has been found in D-Link DWR-M960 1.01.07. This impacts the function sub_4611CC of the file /boafrm/formNtp of the component NTP Configuration Endpoint. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been published and may be used.