CVE-2026-2962 – D-Link DWR-M960 Scheduled Reboot Configuration Endpoint formDateReboot sub_460F30 stack-based overflow

CVE ID : CVE-2026-2962

Published : Feb. 23, 2026, 12:32 a.m. | 33 minutes ago

Description : A vulnerability was found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_460F30 of the file /boafrm/formDateReboot of the component Scheduled Reboot Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been made public and could be used.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…