CVE-2026-7067
Received Received - Intake
Remote Command Injection in D-Link DIR-822 udhcpd DHCP Service

Publication date: 2026-04-27

Last updated on: 2026-04-30

Assigner: VulDB

Description
A vulnerability was determined in D-Link DIR-822 A_101. The impacted element is the function system of the file /udhcpcd/dhcpd.c of the component udhcpd DHCP Service. This manipulation of the argument Hostname causes command injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. This vulnerability only affects products that are no longer supported by the maintainer.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-27
Last Modified
2026-04-30
Generated
2026-05-07
AI Q&A
2026-04-27
EPSS Evaluated
2026-05-05
NVD
CVE-2026-7067
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
dlink dir-822_firmware 1.0.1
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-77 The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.
CWE-74 The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability exists in the D-Link DIR-822 A_101 device, specifically in the udhcpd DHCP Service component within the file /udhcpcd/dhcpd.c. It involves the manipulation of the Hostname argument in the system function, which leads to command injection. This means an attacker can remotely execute arbitrary commands on the affected device by exploiting this flaw.


How can this vulnerability impact me? :

The vulnerability allows remote attackers to inject and execute arbitrary commands on the affected device without any authentication or user interaction. This can lead to unauthorized control over the device, potentially compromising network security, disrupting services, or enabling further attacks within the network.


What immediate steps should I take to mitigate this vulnerability?

This vulnerability affects D-Link DIR-822 devices that are no longer supported by the maintainer.

Immediate mitigation steps include discontinuing use of the affected device or isolating it from untrusted networks to prevent remote exploitation.

Since the vulnerability involves command injection via the DHCP service, disabling or restricting access to the udhcpd DHCP Service on the device may reduce risk.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart