CVE-2026-7067: Command Injection in D-Link DIR-822
A vulnerability was determined in D-Link DIR-822 A_101. The impacted element is the function system of the file /udhcpcd/dhcpd.c of the component udhcpd DHCP Service. This manipulation of the argument Hostname causes command injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. This vulnerability only affects products that are no longer supported by the maintainer.
AI Analysis
Technical Summary
This vulnerability involves command injection in the udhcpd DHCP Service of the D-Link DIR-822 router (version A_101). The issue arises from improper handling of the Hostname argument passed to the system function in the /udhcpcd/dhcpd.c file, enabling remote attackers to execute arbitrary commands on the device. The affected product is no longer supported by the vendor, and no official remediation or patch is available. The vulnerability is publicly disclosed but not known to be exploited in the wild.
Potential Impact
Successful exploitation allows remote attackers to execute arbitrary commands on the affected router, potentially leading to full control over the device. This could compromise network integrity and confidentiality. However, the impact is limited to unsupported versions of the product, and no active exploitation has been reported.
Mitigation Recommendations
No official patch or remediation is available since the affected product version is no longer supported by the vendor. Users should consider upgrading to a supported device or firmware version if available. Network-level protections such as restricting remote access to the device may help reduce exposure. Patch status is not yet confirmed — check the vendor advisory for current remediation guidance.
CVE-2026-7067: Command Injection in D-Link DIR-822
Description
A vulnerability was determined in D-Link DIR-822 A_101. The impacted element is the function system of the file /udhcpcd/dhcpd.c of the component udhcpd DHCP Service. This manipulation of the argument Hostname causes command injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. This vulnerability only affects products that are no longer supported by the maintainer.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves command injection in the udhcpd DHCP Service of the D-Link DIR-822 router (version A_101). The issue arises from improper handling of the Hostname argument passed to the system function in the /udhcpcd/dhcpd.c file, enabling remote attackers to execute arbitrary commands on the device. The affected product is no longer supported by the vendor, and no official remediation or patch is available. The vulnerability is publicly disclosed but not known to be exploited in the wild.
Potential Impact
Successful exploitation allows remote attackers to execute arbitrary commands on the affected router, potentially leading to full control over the device. This could compromise network integrity and confidentiality. However, the impact is limited to unsupported versions of the product, and no active exploitation has been reported.
Mitigation Recommendations
No official patch or remediation is available since the affected product version is no longer supported by the vendor. Users should consider upgrading to a supported device or firmware version if available. Network-level protections such as restricting remote access to the device may help reduce exposure. Patch status is not yet confirmed — check the vendor advisory for current remediation guidance.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2026-04-26T07:27:27.833Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69eea382ba26a39fba976be1
Added to database: 4/26/2026, 11:45:06 PM
Last enriched: 4/27/2026, 12:00:02 AM
Last updated: 4/27/2026, 1:56:14 AM
Views: 21
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.