CVE-2026-2194 PUBLISHED

A flaw has been found in D-Link DI-7100G C1 24.04.18D1. This affects the function start_proxy_client_email. Executing a manipulation can lead to command injection. The attack can be executed remotely. The exploit has been published and may be used.

• jfkk (VulDB User) reporter

• VDB-344897 | D-Link DI-7100G C1 start_proxy_client_email command injection
• VDB-344897 | CTI Indicators (IOB, IOC, TTP, IOA)
• Submit #749804 | D-Link DI-7100G C1: 2020/02/21, 24.04.18D1: 2024/04/18 Command Injection
• https://github.com/glkfc/IoT-Vulnerability/blob/main/D-Link/Dlink_3.md
• https://www.dlink.com/

• Command Injection CWE
• Injection CWE