CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-36983

D-Link DCS-932L v2.18.01 is vulnerable to Command Injection in the function sub_42EF14 of the file /bin/alphapd. The manipulation of the argument LightSensorControl leads to command injection.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.057

EPSS Ranking 90.6%

CVSS Severity

CVSS v3 Score 7.3

References

https://github.com/fru1ts/IoT_vul/blob/main/D-Link/DCS-932L.md
https://www.dlink.com/en/security-bulletin/

Products affected by CVE-2026-36983

Dlink » Dcs-932l » Version: N/A

cpe:2.3:h:dlink:dcs-932l:-
Dlink » Dcs-932l Firmware » Version: 2.18.01

cpe:2.3:o:dlink:dcs-932l_firmware:2.18.01

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-36983

Products

Pricing

Contact Us