CVE-2026-6947: CWE-307 Improper restriction of excessive authentication attempts in D-Link DWM-222W
The D-Link DWM-222W USB Wi-Fi Adapter contains a vulnerability (CVE-2026-6947) that allows unauthenticated adjacent network attackers to bypass brute-force protection mechanisms. This enables attackers to perform unlimited login attempts to gain control over the device. The vulnerability is classified under CWE-307, indicating improper restriction of excessive authentication attempts. The CVSS 4. 0 base score is 8. 7, reflecting a high severity level. No official patch or remediation guidance has been provided by the vendor as of the publication date.
AI Analysis
Technical Summary
CVE-2026-6947 is a high-severity vulnerability in the D-Link DWM-222W USB Wi-Fi Adapter that allows an unauthenticated attacker within adjacent network range to bypass the device's brute-force protection controls. This improper restriction of excessive authentication attempts (CWE-307) enables the attacker to conduct brute-force login attempts without limitation, potentially gaining unauthorized control over the device. The vulnerability has a CVSS 4.0 score of 8.7, indicating significant risk due to network attack vector, no required privileges or user interaction, and high impact on integrity.
Potential Impact
Successful exploitation of this vulnerability could allow an attacker to gain unauthorized control over the affected D-Link DWM-222W device by brute-forcing authentication credentials without restriction. This could lead to device compromise and potentially unauthorized network access or manipulation. There are no known exploits in the wild at this time.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no official fix or remediation level has been provided by D-Link, users should monitor for vendor updates. In the meantime, restricting physical and network access to the device and using strong, unique credentials may help reduce exposure.
CVE-2026-6947: CWE-307 Improper restriction of excessive authentication attempts in D-Link DWM-222W
Description
The D-Link DWM-222W USB Wi-Fi Adapter contains a vulnerability (CVE-2026-6947) that allows unauthenticated adjacent network attackers to bypass brute-force protection mechanisms. This enables attackers to perform unlimited login attempts to gain control over the device. The vulnerability is classified under CWE-307, indicating improper restriction of excessive authentication attempts. The CVSS 4. 0 base score is 8. 7, reflecting a high severity level. No official patch or remediation guidance has been provided by the vendor as of the publication date.
CVSS v4.0
Score 8.7high
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-6947 is a high-severity vulnerability in the D-Link DWM-222W USB Wi-Fi Adapter that allows an unauthenticated attacker within adjacent network range to bypass the device's brute-force protection controls. This improper restriction of excessive authentication attempts (CWE-307) enables the attacker to conduct brute-force login attempts without limitation, potentially gaining unauthorized control over the device. The vulnerability has a CVSS 4.0 score of 8.7, indicating significant risk due to network attack vector, no required privileges or user interaction, and high impact on integrity.
Potential Impact
Successful exploitation of this vulnerability could allow an attacker to gain unauthorized control over the affected D-Link DWM-222W device by brute-forcing authentication credentials without restriction. This could lead to device compromise and potentially unauthorized network access or manipulation. There are no known exploits in the wild at this time.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no official fix or remediation level has been provided by D-Link, users should monitor for vendor updates. In the meantime, restricting physical and network access to the device and using strong, unique credentials may help reduce exposure.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- twcert
- Date Reserved
- 2026-04-24T03:33:37.109Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69eaec2d87115cfb68c0d956
Added to database: 4/24/2026, 4:06:05 AM
Last enriched: 5/1/2026, 8:50:24 PM
Last updated: 6/7/2026, 5:38:52 AM
Views: 76
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.