CVE-2026-36983 PUBLISHED

Assigner: mitre
Reserved: 06.04.2026 Published: 11.05.2026 Updated: 11.05.2026

D-Link DCS-932L v2.18.01 is vulnerable to Command Injection in the function sub_42EF14 of the file /bin/alphapd. The manipulation of the argument LightSensorControl leads to command injection.

Product Status

Vendor	n/a
Product	n/a
Versions	Version n/a is affected

References

https://www.dlink.com/en/security-bulletin/
https://github.com/fru1ts/IoT_vul/blob/main/D-Link/DCS-932L.md

Problem Types

n/a text