Which versions of D-Link are affected by CVE-2026-4499?

D-Link DIR-820LW routers are vulnerable to remote command injection attacks without authentication or patch availability, potentially allowing attackers to gain complete control of affected network…

Is there a public PoC exploit available for CVE-2026-4499?

Yes, a public proof-of-concept exploit is available for CVE-2026-4499. Prioritise patching immediately. EPSS: 0.7%.

D-Link CVE-2026-4499

Q: What is the CVSS score of CVE-2026-4499?

CVE-2026-4499 has a CVSS 4.0 base score of 5.5 (Medium). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.7%.

EUVD-2026-13800 MEDIUM

OS Command Injection (CWE-78)

2026-03-20 VulDB

Command Injection D-Link

5.5

CVSS 4.0

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

CVSS changed

Apr 29, 2026 - 01:11 NVD

6.9 (MEDIUM) 5.5 (MEDIUM)

PoC Detected

Apr 03, 2026 - 19:32 vuln.today

Public exploit code

EUVD ID Assigned

Mar 20, 2026 - 19:46 euvd

EUVD-2026-13800

Analysis Generated

Mar 20, 2026 - 19:46 vuln.today

CVE Published

Mar 20, 2026 - 19:32 nvd

MEDIUM 6.9

DescriptionNVD

A vulnerability was determined in D-Link DIR-820LW 2.03. Affected is the function ssdpcgi_main of the component SSDP. Executing a manipulation can lead to os command injection. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.

AnalysisAI

An OS command injection vulnerability exists in the D-Link DIR-820LW router firmware version 2.03, specifically in the ssdpcgi_main function of the SSDP component. The vulnerability allows remote, unauthenticated attackers to execute arbitrary operating system commands via manipulation of the HTTP_ST environment variable. …

RemediationAI

Within 24 hours: Identify all DIR-820LW routers in your environment and isolate them from critical network segments; document inventory and access points. Within 7 days: Implement network-based mitigations (WAF rules blocking HTTP_ST manipulation, restricted access to SSDP ports); begin evaluation of router replacement options. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

More from same product – last 7 days

CVE-2026-4377 MEDIUM This Month

6.0 May 28

Weak default credential generation in the D-Link DWR-X1820 router exposes administrative access to adjacent-network atta

CVE-2026-4499 vulnerability details – vuln.today

Back

D-Link CVE-2026-4499

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Analysis

Full analysis requires sign-in

More from same product – last 7 days

Share

D-Link CVE-2026-4499

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

More from same product – last 7 days

Share

External POC / Exploit Code