D-Link DWR-M920 formUSSDSetup sub_41CF20 command injection_CVE-2026-11339

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was detected in D-Link DWR-M920 up to 1.1.50. The affected element is the function sub_41CF20 of the file /boafrm/formUSSDSetup. The manipulation of the argument ussdValue results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used.

Basic Information

ID CVE-2026-11339

Source VulDB

Published Jun 5, 2026 at 16:30

Affected Product

Vendor D-Link

Product DWR-M920

Version 1.1.0

Affected Versions D-Link DWR-M920 1.1.0
D-Link DWR-M920 1.1.1
D-Link DWR-M920 1.1.2
D-Link DWR-M920 1.1.3
D-Link DWR-M920 1.1.4
D-Link DWR-M920 1.1.5
D-Link DWR-M920 1.1.6
D-Link DWR-M920 1.1.7
D-Link DWR-M920 1.1.8
D-Link DWR-M920 1.1.9
D-Link DWR-M920 1.1.10
D-Link DWR-M920 1.1.11
D-Link DWR-M920 1.1.12
D-Link DWR-M920 1.1.13
D-Link DWR-M920 1.1.14
D-Link DWR-M920 1.1.15
D-Link DWR-M920 1.1.16
D-Link DWR-M920 1.1.17
D-Link DWR-M920 1.1.18
D-Link DWR-M920 1.1.19
D-Link DWR-M920 1.1.20
D-Link DWR-M920 1.1.21
D-Link DWR-M920 1.1.22
D-Link DWR-M920 1.1.23
D-Link DWR-M920 1.1.24
D-Link DWR-M920 1.1.25
D-Link DWR-M920 1.1.26
D-Link DWR-M920 1.1.27
D-Link DWR-M920 1.1.28
D-Link DWR-M920 1.1.29
D-Link DWR-M920 1.1.30
D-Link DWR-M920 1.1.31
D-Link DWR-M920 1.1.32
D-Link DWR-M920 1.1.33
D-Link DWR-M920 1.1.34
D-Link DWR-M920 1.1.35
D-Link DWR-M920 1.1.36
D-Link DWR-M920 1.1.37
D-Link DWR-M920 1.1.38
D-Link DWR-M920 1.1.39
D-Link DWR-M920 1.1.40
D-Link DWR-M920 1.1.41
D-Link DWR-M920 1.1.42
D-Link DWR-M920 1.1.43
D-Link DWR-M920 1.1.44
D-Link DWR-M920 1.1.45
D-Link DWR-M920 1.1.46
D-Link DWR-M920 1.1.47
D-Link DWR-M920 1.1.48
D-Link DWR-M920 1.1.49
D-Link DWR-M920 1.1.50

CWE Classification

CWE-77 CWE-74

References

{
    "lastseen": "",
    "description": "A vulnerability was detected in D-Link DWR-M920 up to 1.1.50. The affected element is the function sub_41CF20 of the file /boafrm/formUSSDSetup. The manipulation of the argument ussdValue results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used.",
    "published": "2026-06-05T16:30:11.653Z",
    "modified": "2026-06-05T16:30:11.653Z",
    "type": "cve",
    "title": "D-Link DWR-M920 formUSSDSetup sub_41CF20 command injection",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/368881\nhttps://vuldb.com/vuln/368881/cti\nhttps://vuldb.com/cve/CVE-2026-11339\nhttps://vuldb.com/submit/832579\nhttps://github.com/7u7777/Dlink/blob/DWR-M920/formUSSDSetup.md\nhttps://www.dlink.com/",
    "id": "CVE-2026-11339",
    "bulletinFamily": "",
    "cwe": [
        "CWE-77",
        "CWE-74"
    ],
    "cvelist": null,
    "sourceData": "D-Link DWR-M920 1.1.0\nD-Link DWR-M920 1.1.1\nD-Link DWR-M920 1.1.2\nD-Link DWR-M920 1.1.3\nD-Link DWR-M920 1.1.4\nD-Link DWR-M920 1.1.5\nD-Link DWR-M920 1.1.6\nD-Link DWR-M920 1.1.7\nD-Link DWR-M920 1.1.8\nD-Link DWR-M920 1.1.9\nD-Link DWR-M920 1.1.10\nD-Link DWR-M920 1.1.11\nD-Link DWR-M920 1.1.12\nD-Link DWR-M920 1.1.13\nD-Link DWR-M920 1.1.14\nD-Link DWR-M920 1.1.15\nD-Link DWR-M920 1.1.16\nD-Link DWR-M920 1.1.17\nD-Link DWR-M920 1.1.18\nD-Link DWR-M920 1.1.19\nD-Link DWR-M920 1.1.20\nD-Link DWR-M920 1.1.21\nD-Link DWR-M920 1.1.22\nD-Link DWR-M920 1.1.23\nD-Link DWR-M920 1.1.24\nD-Link DWR-M920 1.1.25\nD-Link DWR-M920 1.1.26\nD-Link DWR-M920 1.1.27\nD-Link DWR-M920 1.1.28\nD-Link DWR-M920 1.1.29\nD-Link DWR-M920 1.1.30\nD-Link DWR-M920 1.1.31\nD-Link DWR-M920 1.1.32\nD-Link DWR-M920 1.1.33\nD-Link DWR-M920 1.1.34\nD-Link DWR-M920 1.1.35\nD-Link DWR-M920 1.1.36\nD-Link DWR-M920 1.1.37\nD-Link DWR-M920 1.1.38\nD-Link DWR-M920 1.1.39\nD-Link DWR-M920 1.1.40\nD-Link DWR-M920 1.1.41\nD-Link DWR-M920 1.1.42\nD-Link DWR-M920 1.1.43\nD-Link DWR-M920 1.1.44\nD-Link DWR-M920 1.1.45\nD-Link DWR-M920 1.1.46\nD-Link DWR-M920 1.1.47\nD-Link DWR-M920 1.1.48\nD-Link DWR-M920 1.1.49\nD-Link DWR-M920 1.1.50",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "DWR-M920",
    "version": "1.1.0",
    "vendor": "D-Link",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}