Lucene search
K

CVE-2026-2157

🗓️ 08 Feb 2026 15:02:10Reported by VulDBType 
cve
 cve
🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 23 Views🌐 WEB

Remote command injection in D-Link DIR-823X via /goform/set_static_route_table by manipulating interface and route fields.

Related
Detection
Affected
Refs
Paths
Social
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-2157
8 Feb 202615:02
attackerkb
BDU FSTEC
The vulnerability of the sub_4175CC function (/goform/set_static_route_table) in D-link DIR-823X router software allows a hacker to execute arbitrary commands.
4 Mar 202600:00
bdu_fstec
Circl
CVE-2026-2157
8 Feb 202616:30
circl
CNNVD
D-Link DIR-823X 操作系统命令注入漏洞
8 Feb 202600:00
cnnvd
Cvelist
CVE-2026-2157 D-Link DIR-823X set_static_route_table sub_4175CC os command injection
8 Feb 202615:02
cvelist
EUVD
EUVD-2026-5792
8 Feb 202615:02
euvd
NVD
CVE-2026-2157
8 Feb 202615:15
nvd
OSV
CVE-2026-2157
8 Feb 202615:15
osv
Positive Technologies
PT-2026-6988
8 Feb 202600:00
ptsecurity
RedhatCVE
CVE-2026-2157
9 Feb 202619:23
redhatcve
Rows per page
NVD
Vulners
Node
[
  {
    "vendor": "D-Link",
    "product": "DIR-823X",
    "versions": [
      {
        "version": "250416",
        "status": "affected"
      }
    ]
  }
]
ParameterPositionPathDescriptionCWE
interfacerequest body/goform/set_static_route_tableOS command injection via manipulated static route parameters in /goform/set_static_route_tableCWE-77CWE-78
destiprequest body/goform/set_static_route_tableOS command injection via manipulated static route parameters in /goform/set_static_route_tableCWE-77CWE-78
netmaskrequest body/goform/set_static_route_tableOS command injection via manipulated static route parameters in /goform/set_static_route_tableCWE-77CWE-78
gatewayrequest body/goform/set_static_route_tableOS command injection via manipulated static route parameters in /goform/set_static_route_tableCWE-77CWE-78
metricrequest body/goform/set_static_route_tableOS command injection via manipulated static route parameters in /goform/set_static_route_tableCWE-77CWE-78

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 10:30Current
6.8Medium risk
Vulners AI Score6.8
CVSS 3.17.2
CVSS 28.3
CVSS 48.6
CVSS 37.2
EPSS0.03916
SSVC
23