Vulnerabilities ›

CVE-2026-2129

High ⚡ Exploit Available

CWE-77 — Weakness Type

                    Published: Feb 8, 2026                      ·  Modified: Feb 28, 2026                      ·  Source: NVD                

CVSS v3

7.2

🔗 NVD Official

📄 Description (English)

A vulnerability was found in D-Link DIR-823X 250416. Affected by this issue is some unknown functionality of the file /goform/set_ac_status. Performing a manipulation of the argument ac_ipaddr/ac_ipstatus/ap_randtime results in os command injection. The attack may be initiated remotely. The exploit has been made public and could be used.

🤖 AI Executive Summary

A remote command injection vulnerability exists in D-Link DIR-823X routers through the /goform/set_ac_status endpoint, allowing attackers to execute arbitrary OS commands by manipulating specific parameters. The vulnerability has a CVSS score of 7.2 and publicly available exploits increase the risk of active exploitation.

📄 Description (Arabic)

تم اكتشاف ثغرة حقن أوامر نظام التشغيل في أجهزة توجيه D-Link DIR-823X الإصدار 250416 من خلال نقطة نهاية /goform/set_ac_status. يمكن للمهاجمين البعيدين تنفيذ أوامر نظام التشغيل التعسفية بمعالجة معاملات مثل ac_ipaddr و ac_ipstatus و ap_randtime. وجود استغلالات عامة متاحة يزيد من خطر الاستغلال النشط.

🤖 ملخص تنفيذي (AI)

🤖 AI Intelligence Analysis Analyzed: May 9, 2026 04:02

🇸🇦 Saudi Arabia Impact Assessment

Saudi Relevance: high

🏢 Affected Saudi Sectors

telecom government banking

🎯 MITRE ATT&CK Techniques

T1190 T1059 T1021

⚖️ Saudi Risk Score (AI)

7.0

/ 10.0

🔧 Remediation Steps (English)

Immediately update D-Link DIR-823X firmware to the latest patched version. If updates are unavailable, disable remote management access to the router's web interface, restrict access to /goform/set_ac_status endpoint through firewall rules, and monitor network traffic for suspicious command injection attempts. Consider replacing the device with a supported model receiving security updates.

🔧 خطوات المعالجة (العربية)

قم بتحديث البرامج الثابتة لجهاز D-Link DIR-823X إلى أحدث إصدار معدل فوراً. إذا لم تكن التحديثات متاحة، قم بتعطيل الوصول الإداري البعيد إلى واجهة الويب للموجه، وقيد الوصول إلى نقطة النهاية /goform/set_ac_status من خلال قواعد جدار الحماية، ومراقبة حركة المرور على الشبكة للكشف عن محاولات حقن الأوامر المريبة. فكر في استبدال الجهاز بنموذج مدعوم يتلقى تحديثات أمنية.

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

5.1 5.2 6.1

🔵 SAMA CSF

ID.RA-1 PR.IP-1 DE.CM-1

🟡 ISO 27001:2022

A.12.6.1 A.14.2.1 A.18.2.3

🔗 References & Sources 5

🔗

https://github.com/master-abc/cve/issues/23

cna@vuldb.com

Exploit Issue Tracking

🔗

https://vuldb.com/?ctiid.344764

cna@vuldb.com

Permissions Required VDB Entry

🔗

https://vuldb.com/?id.344764

cna@vuldb.com

Third Party Advisory VDB Entry

🔗

https://vuldb.com/?submit.746935

cna@vuldb.com

Third Party Advisory VDB Entry

🔗

https://www.dlink.com/

cna@vuldb.com

Product

📦 Affected Products / CPE 1 entries

dlink:dir-823x_firmware:250416

📊 CVSS Score

7.2

/ 10.0 — High

📊 CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack VectorN — None / Network

Attack ComplexityL — Low / Local

Privileges RequiredH — High

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityH — High

IntegrityH — High

AvailabilityH — High

📋 Quick Facts

Severity High

CVSS Score7.2

CWECWE-77

EPSS0.10%

Exploit ✓ Yes

Patch ✓ Yes

Published 2026-02-08

Source Feed nvd

🇸🇦 Saudi Risk Score

7.0

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

exploit-available CWE-77

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

💬 Comments

Loading comments

CVE-2026-2129

💬 Comments

Introduce Yourself

Sign In Required