Threats Tagged 'cve-2026-4195'
View all threats tagged with 'cve-2026-4195'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-4195'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-4195: Command Injection in D-Link DNS-120CVE-2026-4195 0 CVE-2026-4195 is a medium severity command injection vulnerability affecting multiple D-Link DNS series devices, including DNS-120 and others, up to firmware version 20260205. The flaw exists in an unspecified function within the /cgi-bin/wizard_mgr.cgi file, allowing remote attackers to execute arbitrary commands without authentication or user interaction. Although the exploit code has been published, no known widespread exploitation has been reported yet. The vulnerability impacts confidentiality, integrity, and availability due to potential full system compromise. Organizations using affected D-Link NAS and network devices are at risk, especially if devices are exposed to untrusted networks. Mitigation requires applying vendor patches once available or restricting access to the management interface. Countries with significant D-Link device usage and strategic reliance on these devices are at higher risk. Due to the medium CVSS score and remote exploitation capability without authentication, timely remediation is critical to prevent potential attacks. Join the discussion | CVE Database V5 | 03/15/2026, 23:02:19 UTC Added: 03/15/2026, 23:05:58 UTC |
Showing 1 to 1 of 1 result